Vulnerability Description
NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Prosafe Firmware | 5.3.0.17 |
| Netgear | Prosafe Gs725Ts | - |
| Netgear | Prosafe Gs728Tps | - |
| Netgear | Prosafe Gs728Ts | - |
| Netgear | Prosafe Gs752Tps | - |
| Netgear | Prosafe Gs724T | v3 |
| Netgear | Prosafe S716T | v2 |
| Netgear | Prosafe Gs728Txs | - |
| Netgear | Prosafe Gs752Txs | - |
| Netgear | Prosafe Gs748T | v4 |
| Netgear | Prosafe Gs510Tp | - |
Related Weaknesses (CWE)
References
- http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pExploit
- http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pExploit
FAQ
What is CVE-2013-4775?
CVE-2013-4775 is a vulnerability with a CVSS score of 7.8 (HIGH). NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.1...
How severe is CVE-2013-4775?
CVE-2013-4775 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-4775?
Check the references section above for vendor advisories and patch information. Affected products include: Netgear Prosafe Firmware, Netgear Prosafe Gs725Ts, Netgear Prosafe Gs728Tps, Netgear Prosafe Gs728Ts, Netgear Prosafe Gs752Tps.