- Description
- A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1.00.15NA. This affects an unknown part of the file /BRS_top.html of the component Basic Authentication. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other products might be affected as well. The vendor was contacted early about this disclosure.
- Source
- cna@vuldb.com
- NVD status
- Analyzed
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Secondary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- cna@vuldb.com
- CWE-287
- Hype score
- Not currently trending
Sicherheitslücke in NETGEAR-Router ermöglicht Kontrolle für Angreifer In bestimmten NETGEAR-Routern (Modell DGND3700v2) wurde eine schwerwiegende Sicherheitslücke entdeckt (CVE-2025-4978), die es Angreifern erlaubt, ohne Authentifizierung vollständigen Administratorzugriff
@tec4net
28 May 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
به تازگی برای مودم های NETGEAR سری DGND3700v2 ، آسیب پذیری از نوع authentication bypass منتشر شده است که باعث کنترل کامل روتر می شود. نمره این آسیب پذیری که دارای کد شناسایی (C
@AmirHossein_sec
25 May 2025
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-4978 (CVSS:9.3, CRITICAL) is Awaiting Analysis. A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1.00.15NA. This affects ..https://t.co/iEO5mLhnim #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
25 May 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical vulnerabilities found in NETGEAR routers (CVE-2025-4978), Apple XNU kernels, and Versa SD-WAN devices now patched. Law enforcement dismantled major ransomware and dark web drug rings. New threats target SaaS apps & social media malware. 🛡️ #Netg… https://t.co/
@TweetThreatNews
25 May 2025
229 Impressions
2 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
A critical flaw (CVE-2025-4978) in some NETGEAR routers allows full admin access via the mini_http server's /BRS_top.html endpoint. Attacks can alter settings, steal credentials, or deploy malware. Firmware v1.1.00.26 fixes this. 🔓🌐 #Internet #UK https://t.co/WTdrTw5Qsu
@TweetThreatNews
24 May 2025
100 Impressions
1 Retweet
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Threat Alert: Critical NETGEAR Router Flaw Enables Full Admin Access via Hidden Backdoor (PoC CVE-2025-4978 Severity: ⚠️ Critical Maturity: 💢 Emerging Learn more: https://t.co/z4pAr448tZ #CyberSecurity #ThreatIntel #InfoSec
@fletch_ai
24 May 2025
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ A critical flaw in NETGEAR DGND3700v2 routers (CVE-2025-4978) allows full admin access without authentication. Firmware patch released. Full story 👇 #CyberSecurity #IoTSecurity #NETGEAR https://t.co/WqHGgRJGjH
@threatsbank
24 May 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ネットギア社のDGND3700v2ルータに重大(Critical)な脆弱性。CVE-2025-4978はCVSSv4スコア9.3で、ルータのWebインターフェースにおけるバックドアを経由して未認証の攻撃者がログイン認証を迂回可能なもの。ファームウ
@__kokumoto
23 May 2025
1329 Impressions
3 Retweets
11 Likes
2 Bookmarks
0 Replies
1 Quote
CVE-2025-4978 A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1.00.15NA. This affects an unknown part of the file /BRS_top.html of the… https://t.co/lIjOrbNkyj
@CVEnew
20 May 2025
214 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:netgear:dgnd3700_firmware:1.1.00.15_1.00.15na:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CE829A1-EC2E-47B3-8F03-9C834ED3E5B5"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:dgnd3700:v2:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7A8F0B8E-D3F2-43C9-8B12-43DE4226E826"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]