Vulnerability Description
An Information Disclosure vulnerability exists in Netgear WNDR4700 running firmware 1.0.0.34 in the management web interface, which discloses the PSK of the wireless LAN.
CVSS Score
7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Wndr4700 Firmware | 1.0.0.34 |
| Netgear | Wndr4700 | - |
Related Weaknesses (CWE)
References
- https://kb.netgear.com/24413/WNDR3700v4-Firmware-Version-1-0-1-52-Except-China-aPatchVendor Advisory
- https://www.ise.io/casestudies/exploiting-soho-routers/Third Party Advisory
- https://www.ise.io/soho_service_hacks/Third Party Advisory
- https://www.ise.io/wp-content/uploads/2017/07/soho_techreport.pdfTechnical DescriptionThird Party Advisory
- https://www.securityfocus.com/bid/59308Third Party AdvisoryVDB Entry
- https://kb.netgear.com/24413/WNDR3700v4-Firmware-Version-1-0-1-52-Except-China-aPatchVendor Advisory
- https://www.ise.io/casestudies/exploiting-soho-routers/Third Party Advisory
- https://www.ise.io/soho_service_hacks/Third Party Advisory
- https://www.ise.io/wp-content/uploads/2017/07/soho_techreport.pdfTechnical DescriptionThird Party Advisory
- https://www.securityfocus.com/bid/59308Third Party AdvisoryVDB Entry
FAQ
What is CVE-2013-3070?
CVE-2013-3070 is a vulnerability with a CVSS score of 7.5 (HIGH). An Information Disclosure vulnerability exists in Netgear WNDR4700 running firmware 1.0.0.34 in the management web interface, which discloses the PSK of the wireless LAN.
How severe is CVE-2013-3070?
CVE-2013-3070 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-3070?
Check the references section above for vendor advisories and patch information. Affected products include: Netgear Wndr4700 Firmware, Netgear Wndr4700.