Cybersecurity researchers have disclosed critical security vulnerabilities that affect NETGEAR DGN2200v1 series routers, that can enable authentication bypass to take over devices and access stored credentials.

The three HTTPd authentication security weaknesses having CVSS scores of 7.1 – 9.4 affect the routers running firmware versions prior to v1.0.0.60, and was patched by the company in December 2020 as part of a coordinated vulnerability disclosure process.

Microsoft 365 Defender Research Team’s Jonathan Bar Or said that the increasing number of firmware attacks and ransomware attacks via VPN devices and other internet-facing systems are examples of attacks initiated outside and below the operating system layer. As these types of attacks have become common, the users must secure even the single-purpose software that run their hardware such as routers.

The vulnerabilities allow accessing router management pages using an authentication bypass that allows a threat actor to attain complete control over the router and also obtain saved router credentials via a cryptographic side-channel attack, and even recover the username and the password stored in the router’s memory by exploiting the configuration backuprestore feature.

The researchers also found that the credentials were encrypted using a constant key, which can be subsequently used to retrieve the plaintext password and the username.

All the NETGEAR DGN2200v1 users are recommended to download and update to the latest firmware to avoid any potential attacks.

Image Credits : Tom’s Guide

The post Microsoft discloses NETGEAR firmware vulnerabilities first appeared on Cybersafe News.

You May Also Like

5 vulnerabilities patched in VMWare Cloud Foundation (ESXi). Update immediately

Cybersecurity specialists report the detection of multiple vulnerabilities in VMware Cloud Foundation…

25 BadAlloc vulnerabilities affects BlackBerry QNX RTOS used by over 195 million vehicles and embedded systems in different industries. Patch quickly

In a security report, BlackBerry announced that its QNX Real Time Operating…

3 unpatched vulnerabilities in Philips MRI 1.5T and 3T machines allow leaking confidential health data

Information security specialists report the detection of three vulnerabilities in MRI 1.5T…

New Oracle update fixes 520 vulnerabilities in 12 products: Three critical flaws with CVSS scores of 10 and 70 flaws with 9.8/10 score

In its quarterly Critical Patch Update (CPU), Oracle has included a total…