Certain NETGEAR devices allow unauthenticated access to critical .cgi and .htm pages via a substring ending with .jpg, such as by appending ?x=1.jpg to a URL. This affects MBR1515, MBR1516, DGN2200, DGN2200M, DGND3700, WNR2000v2, WNDR3300, WNDR3400, WNR3500, and WNR834Bv2.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netgear mbr1515 firmware - |
||
netgear mbr1516 firmware - |
||
netgear dgn2200 firmware - |
||
netgear dgn2200m firmware - |
||
netgear dgnd3700 firmware - |
||
netgear wnr2000v2 firmware - |
||
netgear wndr3300 firmware - |
||
netgear wndr3400 firmware - |
||
netgear wnr3500 firmware - |
||
netgear wnr834bv2 firmware - |