Detections
Analytics

NETGEAR DGN2200 Multiple Vulnerabilities

high Nessus Plugin ID 72830

Language:

Synopsis

The remote device is affected by multiple vulnerabilities.

Description

Nessus was able to determine that the remote device is a NETGEAR DGN2200. This device is affected by multiple vulnerabilities, the worst of which allow an unauthenticated, adjacent attacker to gain root telnet access to the device.

Solution

Discontinue use of this device as it is no longer supported by NETGEAR.

Plugin Details

Severity: High

ID: 72830

File Name: netgear_dgn2200_multiple_vulns.nasl

Version: 1.15

Type: remote

Family: Misc.

Published: 3/5/2014

Updated: 8/8/2018

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 8.3

Temporal Score: 7.5

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.8

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: x-cpe:/h:netgear:dgn2200

Required KB Items: installed_sw/Netgear WWW

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Vulnerability Publication Date: 2/11/2014

Reference Information

BID: 67178, 67201, 68889