Vulnerability-Lookup

CVE-2013-4775 (GCVE-0-2013-4775)

Vulnerability from cvelistv5 – Published: 2013-12-19 02:00 – Updated: 2024-08-06 16:52

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

FKIE_CVE-2013-4775

Vulnerability from fkie_nvd - Published: 2013-12-19 04:24 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

	URL	Tags
	cve@mitre.org	http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf	Exploit
	af854a3a-2127-422b-91ae-364da2661108	http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf	Exploit

Impacted products

Vendor	Product	Version
netgear	prosafe_firmware	5.3.0.17
netgear	prosafe_gs725ts	-
netgear	prosafe_gs728tps	-
netgear	prosafe_gs728ts	-
netgear	prosafe_gs752tps	-
netgear	prosafe_firmware	*
netgear	prosafe_firmware	5.0.4.4
netgear	prosafe_firmware	5.3.0.17
netgear	prosafe_firmware	5.4.0.6
netgear	prosafe_firmware	5.4.1.10
netgear	prosafe_gs724t	v3
netgear	prosafe_s716t	v2
netgear	prosafe_firmware	6.1.0.12
netgear	prosafe_gs728txs	-
netgear	prosafe_gs752txs	-
netgear	prosafe_firmware	*
netgear	prosafe_firmware	5.0.4.4
netgear	prosafe_firmware	5.3.0.17
netgear	prosafe_firmware	5.4.0.6
netgear	prosafe_firmware	5.4.1.10
netgear	prosafe_firmware	5.4.1.13
netgear	prosafe_gs748t	v4
netgear	prosafe_firmware	5.4.0.6
netgear	prosafe_gs510tp	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "554F724F-FC50-4625-8132-4615C6E068ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs725ts:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7C4A5E9-4BC8-487E-AC37-340D9521CD6A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs728tps:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "41BF7F4E-E887-49D4-837B-6B87581BF1C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs728ts:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2842C83-3BEC-465E-8517-B1BF0BF89656",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs752tps:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "ECD778B1-CCD5-4A89-B22E-9AD552C89190",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6E7562-34FA-4E97-A0D8-B28E2E731F9A",
              "versionEndIncluding": "5.4.1.13",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.0.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "40B5584E-F422-4E80-B332-3D1B41E0AA29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "554F724F-FC50-4625-8132-4615C6E068ED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AEF174C-AFBB-427D-A328-5DDB01B89921",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "9F8F3AB1-9A0A-43FB-A15F-4019EAC4AF17",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs724t:v3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B14242B7-165D-4809-ADC6-F7C5DC4F9F7E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_s716t:v2:*:*:*:*:*:*:*",
              "matchCriteriaId": "99594573-A11E-47DB-B5E7-5EE2D52E812A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:6.1.0.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8B9D972-C983-48E8-A01B-AD7C79A0E739",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs728txs:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F1AE378-DCDD-4D2D-AB85-4808BAB6C4F5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs752txs:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBE03F4C-37A5-4CF9-910C-654CF4032699",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "858103B7-F545-42ED-A24B-4DD75613CF28",
              "versionEndIncluding": "5.4.1.14",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.0.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "40B5584E-F422-4E80-B332-3D1B41E0AA29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "554F724F-FC50-4625-8132-4615C6E068ED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AEF174C-AFBB-427D-A328-5DDB01B89921",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "9F8F3AB1-9A0A-43FB-A15F-4019EAC4AF17",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "0111C987-B1CD-47A2-9140-365B08ACF764",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs748t:v4:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7D8B404-2B20-425E-AA3C-22CD19E44386",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AEF174C-AFBB-427D-A328-5DDB01B89921",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:netgear:prosafe_gs510tp:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "765A5DC4-0520-4681-8F47-014FEB260256",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config."
    },
    {
      "lang": "es",
      "value": "NETGEAR ProSafe GS724Tv3 y GS716Tv2 con firmware 5.4.1.13 y anteriores; GS748Tv4 con firmware 5.4.1.14; GS510TP con firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, y GS725TS con firmware 5.3.0.17; y GS752TXS y GS728TXS con firmware 6.1.0.12 permite a atacantes remotos leer credenciales de administrador cifradas y otras configuraciones de inicio a trav\u00e9s de una petici\u00f3n directa a filesystem/startup-config."
    }
  ],
  "id": "CVE-2013-4775",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 7.8,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2013-12-19T04:24:48.493",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-GW22-C69G-Q8GM

Vulnerability from github – Published: 2022-05-17 04:56 – Updated: 2022-05-17 04:56

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2013-4775"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2013-12-19T04:24:00Z",
    "severity": "HIGH"
  },
  "details": "NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config.",
  "id": "GHSA-gw22-c69g-q8gm",
  "modified": "2022-05-17T04:56:00Z",
  "published": "2022-05-17T04:56:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4775"
    },
    {
      "type": "WEB",
      "url": "http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

VAR-201312-0126

Vulnerability from variot - Updated: 2025-04-11 23:11

NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config. NetGear ProSafe is a smart switch product that monitors and configures the network. An information disclosure vulnerability exists in multiple NetGear ProSafe switches. An attacker can exploit a vulnerability to download a configuration file and reveal sensitive information. The information obtained may be helpful for further attacks. 1. BACKGROUND

According to the vendor, Netgear ProSafe is a cost-effective line of smart switches for Small and Medium Businesses (SMBs). The products cover an essential set of network features and easy-to-use web-based management. Power over Ethernet (PoE) and Stacking versions are also available.

CVE-2013-4776: Denial of Service vulnerability.
AFFECTED PRODUCTS AND SOFTWARE

CVE-2013-4775

GS724Tv3 and GS716Tv2 - firmware 5.4.1.13 GS724Tv3 and GS716Tv2 - firmware 5.4.1.10 GS748Tv4 - firmware 5.4.1.14 GS510TP - firmware 5.4.0.6 GS752TPS and GS728TPS - firmware 5.3.0.17 GS728TS and GS725TS - firmware 5.3.0.17 GS752TXS and GS728TXS - firmware 6.1.0.12

CVE-2013-4776

GS724Tv3 and GS716Tv2 - firmware 5.4.1.13 GS724Tv3 and GS716Tv2 - firmware 5.4.1.10 GS748Tv4 - firmware 5.4.1.14 GS510TP - firmware 5.0.4.4

VULNERABILITIES

The list below describes the vulnerabilities discovered in the affected software.

4.1 CVE-2013-4775: Unauthenticated startup-config disclosure

The web management application fails to restrict URL access to different application areas.

[Proof of Concept] The vulnerability can be exploited with a simple HTTP (GET) request. Open a browser and visit http://Target-IP/filesystem/startup-config

4.2 CVE-2013-4776: Denial of Service vulnerability

The affected products are prone to a Denial of Service vulnerability. Remote, unauthenticated attackers could exploit this issue to cause a switch reboot or crash, resulting in a loss of network connectivity for all devices connected to the switch.

[Proof of Concept] The vulnerability can be exploited with a simple HTTP (GET) request. Open a browser and visit http://Target-IP/filesystem/

Implementation of a Proof of Concept for both vulnerabilities can be found here: http://www.encripto.no/tools/netgear-prosafe-PoC.tar.gz

REMEDIATION

No firmware updates or fixes have been released yet. As a mitigation, the vendor recommends configuring a separate management VLAN and configure access control via \x93Security::Access::Access Control\x94 or \x93Security::ACL::Advanced::IP Extended Rules\x94.

CREDIT

The vulnerabilities were originally discovered in a GS724Tv3 device, by Juan J. G\xfcelfo at Encripto AS. E-mail: post [at] encripto [dot] no Web: http://www.encripto.no

Special thanks to Maarten Hoogcarspel and the Netgear Support Team for verifying other switch models, and considering possible fixes.

For more information about Encripto\x92s research policy, please visit http://www.encripto.no/forskning/

REFERENCES

http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf http://www.encripto.no/tools/netgear-prosafe-PoC.tar.gz

DISCLAIMER

The material presented in this document is for educational purposes only. Encripto AS cannot be responsible for any loss or damage carried out by any technique presented in this material. The reader is the only one responsible for applying this knowledge, which is at his / her own risk. Any of the trademarks, service marks, collective marks, design rights, personality rights or similar rights that are mentioned, used or cited in this document is property of their respective owners

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201312-0126",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "netgear",
        "version": "5.3.0.17"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "netgear",
        "version": "5.4.1.10"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "netgear",
        "version": "6.1.0.12"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "netgear",
        "version": "5.0.4.4"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "netgear",
        "version": "5.4.0.6"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "netgear",
        "version": "5.4.1.13"
      },
      {
        "model": "prosafe gs748t",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": "v4"
      },
      {
        "model": "prosafe gs510tp",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": null
      },
      {
        "model": "prosafe gs728tps",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": null
      },
      {
        "model": "prosafe",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "netgear",
        "version": "5.4.1.13"
      },
      {
        "model": "prosafe gs724t",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": "v3"
      },
      {
        "model": "prosafe gs728ts",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": null
      },
      {
        "model": "prosafe s716t",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": "v2"
      },
      {
        "model": "prosafe gs728txs",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": null
      },
      {
        "model": "prosafe gs725ts",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": null
      },
      {
        "model": "prosafe gs752txs",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": null
      },
      {
        "model": "prosafe",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "netgear",
        "version": "5.4.1.14"
      },
      {
        "model": "prosafe gs752tps",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netgear",
        "version": null
      },
      {
        "model": "gs510tp",
        "scope": null,
        "trust": 0.8,
        "vendor": "net gear",
        "version": null
      },
      {
        "model": "gs716t",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "v2"
      },
      {
        "model": "gs724t",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "v3"
      },
      {
        "model": "gs725ts",
        "scope": null,
        "trust": 0.8,
        "vendor": "net gear",
        "version": null
      },
      {
        "model": "gs728tps",
        "scope": null,
        "trust": 0.8,
        "vendor": "net gear",
        "version": null
      },
      {
        "model": "gs728ts",
        "scope": null,
        "trust": 0.8,
        "vendor": "net gear",
        "version": null
      },
      {
        "model": "gs728txs",
        "scope": null,
        "trust": 0.8,
        "vendor": "net gear",
        "version": null
      },
      {
        "model": "gs748t",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "v4"
      },
      {
        "model": "gs752tps",
        "scope": null,
        "trust": 0.8,
        "vendor": "net gear",
        "version": null
      },
      {
        "model": "gs752txs",
        "scope": null,
        "trust": 0.8,
        "vendor": "net gear",
        "version": null
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.3.0.17 (gs725ts)"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.3.0.17 (gs728tps)"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.3.0.17 (gs728ts)"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.3.0.17 (gs752tps)"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.4.0.6 (gs510tp)"
      },
      {
        "model": "prosafe",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.4.1.13   (gs716t v2)"
      },
      {
        "model": "prosafe",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.4.1.13   (gs724t v3)"
      },
      {
        "model": "prosafe",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "5.4.1.14   (gs748t v4)"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "6.1.0.12 (gs728txs)"
      },
      {
        "model": "prosafe",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "net gear",
        "version": "6.1.0.12 (gs752txs)"
      },
      {
        "model": "prosafe switches",
        "scope": null,
        "trust": 0.6,
        "vendor": "netgear",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs510tp",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs716t",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs724t",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs725ts",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs728tps",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs728ts",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs728txs",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs748t",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs752tps",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:netgear:prosafe_gs752txs",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/o:netgear:prosafe_firmware",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Juan J. G\u00fcelfo at Encripto AS",
    "sources": [
      {
        "db": "BID",
        "id": "61918"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2013-4775",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 7.8,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2013-4775",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2013-12586",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 7.8,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "VHN-64777",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:C/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2013-4775",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2013-4775",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2013-12586",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201312-396",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-64777",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config. NetGear ProSafe is a smart switch product that monitors and configures the network. An information disclosure vulnerability exists in multiple NetGear ProSafe switches. An attacker can exploit a vulnerability to download a configuration file and reveal sensitive information. The information obtained may be helpful for further attacks. 1. BACKGROUND\n\nAccording to the vendor, Netgear ProSafe is a cost-effective line of smart switches for Small and Medium Businesses (SMBs). The products cover an essential set of network features and easy-to-use web-based management. Power over Ethernet (PoE) and Stacking versions are also available. \n\n\n2. \nCVE-2013-4776: Denial of Service vulnerability. \n\n\n3. AFFECTED PRODUCTS AND SOFTWARE\n\nCVE-2013-4775\n\nGS724Tv3 and GS716Tv2 - firmware 5.4.1.13\nGS724Tv3 and GS716Tv2 - firmware 5.4.1.10\nGS748Tv4              - firmware 5.4.1.14\nGS510TP               - firmware 5.4.0.6\nGS752TPS and GS728TPS - firmware 5.3.0.17\nGS728TS and GS725TS   - firmware 5.3.0.17\nGS752TXS and GS728TXS - firmware 6.1.0.12\n\n\nCVE-2013-4776\n\nGS724Tv3 and GS716Tv2 - firmware 5.4.1.13\nGS724Tv3 and GS716Tv2 - firmware 5.4.1.10\nGS748Tv4              - firmware 5.4.1.14\nGS510TP               - firmware 5.0.4.4\n\n\n4. VULNERABILITIES\n\nThe list below describes the vulnerabilities discovered in the affected software. \n\n\n4.1 CVE-2013-4775: Unauthenticated startup-config disclosure\n\nThe web management application fails to restrict URL access to different application areas. \n\n[Proof of Concept]\nThe vulnerability can be exploited with a simple HTTP (GET) request. \nOpen a browser and visit http://Target-IP/filesystem/startup-config\n\n\n4.2 CVE-2013-4776: Denial of Service vulnerability\n\nThe affected products are prone to a Denial of Service vulnerability. Remote, unauthenticated\nattackers could exploit this issue to cause a switch reboot or crash, resulting in a loss of\nnetwork connectivity for all devices connected to the switch. \n\n[Proof of Concept]\nThe vulnerability can be exploited with a simple HTTP (GET) request. \nOpen a browser and visit http://Target-IP/filesystem/\n\n\nImplementation of a Proof of Concept for both vulnerabilities can be found here:\nhttp://www.encripto.no/tools/netgear-prosafe-PoC.tar.gz\n\n\n5. REMEDIATION\n\nNo firmware updates or fixes have been released yet. \nAs a mitigation, the vendor recommends configuring a separate management VLAN and configure\naccess control via \\x93Security::Access::Access Control\\x94 or \\x93Security::ACL::Advanced::IP Extended Rules\\x94. \n\n\n6. CREDIT\n\nThe vulnerabilities were originally discovered in a GS724Tv3 device, by Juan J. G\\xfcelfo at Encripto AS. \nE-mail: post [at] encripto [dot] no\nWeb: http://www.encripto.no\n\n\nSpecial thanks to Maarten Hoogcarspel and the Netgear Support Team for verifying other switch\nmodels, and considering possible fixes. \n\nFor more information about Encripto\\x92s research policy, please visit http://www.encripto.no/forskning/\n\n\n7. REFERENCES\n\nhttp://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf\nhttp://www.encripto.no/tools/netgear-prosafe-PoC.tar.gz\n\n \nDISCLAIMER\n\nThe material presented in this document is for educational purposes only. Encripto AS cannot be\nresponsible for any loss or damage carried out by any technique presented in this material. The reader is\nthe only one responsible for applying this knowledge, which is at his / her own risk. \nAny of the trademarks, service marks, collective marks, design rights, personality rights or similar rights\nthat are mentioned, used or cited in this document is property of their respective owners",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2013-4775"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "db": "BID",
        "id": "61918"
      },
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "db": "PACKETSTORM",
        "id": "122904"
      }
    ],
    "trust": 2.61
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-64777",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2013-4775",
        "trust": 3.6
      },
      {
        "db": "BID",
        "id": "61918",
        "trust": 1.0
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "122904",
        "trust": 0.2
      },
      {
        "db": "PACKETSTORM",
        "id": "122905",
        "trust": 0.2
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-81366",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "27774",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-64777",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "db": "BID",
        "id": "61918"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "db": "PACKETSTORM",
        "id": "122905"
      },
      {
        "db": "PACKETSTORM",
        "id": "122904"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "id": "VAR-201312-0126",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      }
    ],
    "trust": 1.35417773
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      }
    ]
  },
  "last_update_date": "2025-04-11T23:11:58.620000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "\u30b9\u30a4\u30c3\u30c1\u88fd\u54c1",
        "trust": 0.8,
        "url": "http://www.netgear.jp/products/business/switch"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-200",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.6,
        "url": "http://www.encripto.no/forskning/whitepapers/netgear_prosafe_advisory_aug_2013.pdf"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-4775"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-4775"
      },
      {
        "trust": 0.6,
        "url": "http://www.securityfocus.com/bid/61918"
      },
      {
        "trust": 0.3,
        "url": "http://www.netgear.com"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2013-4775"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2013-4776"
      },
      {
        "trust": 0.1,
        "url": "http://target-ip/filesystem/startup-config"
      },
      {
        "trust": 0.1,
        "url": "http://target-ip/filesystem/"
      },
      {
        "trust": 0.1,
        "url": "http://www.encripto.no/tools/netgear-prosafe-poc.tar.gz"
      },
      {
        "trust": 0.1,
        "url": "http://www.encripto.no"
      },
      {
        "trust": 0.1,
        "url": "http://www.encripto.no/forskning/"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "db": "BID",
        "id": "61918"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "db": "PACKETSTORM",
        "id": "122905"
      },
      {
        "db": "PACKETSTORM",
        "id": "122904"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "db": "BID",
        "id": "61918"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "db": "PACKETSTORM",
        "id": "122905"
      },
      {
        "db": "PACKETSTORM",
        "id": "122904"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      },
      {
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2013-08-27T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "date": "2013-12-19T00:00:00",
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "date": "2013-08-21T00:00:00",
        "db": "BID",
        "id": "61918"
      },
      {
        "date": "2013-12-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "date": "2013-08-22T02:13:52",
        "db": "PACKETSTORM",
        "id": "122905"
      },
      {
        "date": "2013-08-22T02:11:50",
        "db": "PACKETSTORM",
        "id": "122904"
      },
      {
        "date": "2013-12-24T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      },
      {
        "date": "2013-12-19T04:24:48.493000",
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2013-08-27T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2013-12586"
      },
      {
        "date": "2013-12-19T00:00:00",
        "db": "VULHUB",
        "id": "VHN-64777"
      },
      {
        "date": "2013-08-21T00:00:00",
        "db": "BID",
        "id": "61918"
      },
      {
        "date": "2013-12-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      },
      {
        "date": "2014-01-02T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      },
      {
        "date": "2025-04-11T00:51:21.963000",
        "db": "NVD",
        "id": "CVE-2013-4775"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "plural  NETGEAR ProSafe Vulnerability to read encrypted administrator authentication information in switch product firmware",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2013-005621"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "information disclosure",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201312-396"
      }
    ],
    "trust": 0.6
  }
}

GSD-2013-4775

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2013-4775

Aliases

CVE-2013-4775

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2013-4775",
    "description": "NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config.",
    "id": "GSD-2013-4775",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2013-4775"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2013-4775"
      ],
      "details": "NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config.",
      "id": "GSD-2013-4775",
      "modified": "2023-12-13T01:22:16.102443Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2013-4775",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf",
            "refsource": "MISC",
            "url": "http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs728tps:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs752tps:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs725ts:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs728ts:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "5.4.1.13",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.10:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.0.4.4:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs724t:v3:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_s716t:v2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:6.1.0.12:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs728txs:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs752txs:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.0.4.4:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "5.4.1.14",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.13:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.10:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs748t:v4:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:netgear:prosafe_gs510tp:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-4775"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-200"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf",
              "refsource": "MISC",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.encripto.no/forskning/whitepapers/Netgear_prosafe_advisory_aug_2013.pdf"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 7.8,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2013-12-19T19:19Z",
      "publishedDate": "2013-12-19T04:24Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2013-4775 (GCVE-0-2013-4775)

FKIE_CVE-2013-4775

GHSA-GW22-C69G-Q8GM

VAR-201312-0126

GSD-2013-4775

Tags

Sightings

Nomenclature