PT-2025-22135 · NetGear · Netgear Dgnd3700
153528990
·
Published
2025-05-20
·
Updated
2025-07-09
·
CVE-2025-4978
CVSS v4.0
10
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Netgear DGND3700 version 1.1.00.15 1.00.15NA
Description
A very critical issue was found, affecting the Basic Authentication component of the Netgear DGND3700. This issue leads to improper authentication and can be initiated remotely. The exploit has been disclosed publicly and may be used. Other products might also be affected.
Recommendations
For Netgear DGND3700 version 1.1.00.15 1.00.15NA, consider restricting access to the Basic Authentication component until a patch is available. As a temporary workaround, avoid using the
Basic Authentication feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netgear Dgnd3700