ZDI-CAN-13325: NETGEAR XR1000 UPnP SOAPAction Missing Authentication Information Disclosure Vulnerability
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR XR1000 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of SOAP messages. The issue results from a lack of authentication required for a privileged request. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NETGEAR XR1000 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of ZDI-CAN-13325?
The severity of ZDI-CAN-13325 is classified as critical due to the potential for sensitive information disclosure without authentication.
How do I fix ZDI-CAN-13325?
To fix ZDI-CAN-13325, update your NETGEAR XR1000 router to the latest firmware version provided by NETGEAR.
Who is affected by ZDI-CAN-13325?
ZDI-CAN-13325 affects installations of NETGEAR XR1000 routers that are processing SOAP messages.
What type of attack does ZDI-CAN-13325 allow?
ZDI-CAN-13325 allows network-adjacent attackers to disclose sensitive information.
Is authentication required to exploit ZDI-CAN-13325?
No, authentication is not required to exploit ZDI-CAN-13325.
- agent/references
- agent/softwarecombine
- agent/severity
- agent/title
- agent/event
- agent/type
- agent/description
- agent/source
- agent/tags
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-21-1058
- alias/ZDI-CAN-13325
- alias/CVE-2021-34870
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/netgear
- canonical/netgear xr1000 firmware