CVE-2021-35973
First published: Wed Jun 30 2021(Updated: )
NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/mini_httpd, allowing an unauthenticated attacker to invoke any action by adding the ¤tsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows the attacker to change the web UI password, and eventually to enable debug mode (telnetd) and gain a shell on the device as the admin limited-user account (however, escalation to root is simple because of weak permissions on the /etc/ directory).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear Wac104 Firmware | <1.0.4.15 | |
| NETGEAR WAC104 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-35973?
CVE-2021-35973 is an authentication bypass vulnerability in NETGEAR WAC104 devices before version 1.0.4.15.
What is the severity of CVE-2021-35973?
The severity of CVE-2021-35973 is critical, with a CVSS score of 9.8.
How does CVE-2021-35973 affect NETGEAR WAC104 devices?
CVE-2021-35973 allows an unauthenticated attacker to invoke any action by adding the 'currentsetting.htm' substring to the HTTP query.
Which version of NETGEAR WAC104 firmware is affected by CVE-2021-35973?
NETGEAR WAC104 devices before version 1.0.4.15 are affected by CVE-2021-35973.
How can I fix CVE-2021-35973?
To fix CVE-2021-35973, update your NETGEAR WAC104 device firmware to version 1.0.4.15 or above.
- collector/nvd-index
- agent/references
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- vendor/netgear
- canonical/netgear wac104 firmware
- canonical/netgear wac104