Unrated severityNVD Advisory· Published May 20, 2025· Updated May 20, 2025

Netgear DGND3700 Basic Authentication BRS_top.html improper authentication

CVE-2025-4978

Description

A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1.00.15NA. This affects an unknown part of the file /BRS_top.html of the component Basic Authentication. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other products might be affected as well. The vendor was contacted early about this disclosure.

Affected products

Netgear/DGND3700llm-fuzzy
Range: =1.1.00.15_1.00.15NA
Netgear/DGND3700v5
Range: 1.1.00.15_1.00.15NA

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/at0de/my_vulns/blob/main/Netgear/DGND3700v2/backdoor.mdmitreexploit
vuldb.commitrethird-party-advisory
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entry
www.netgear.commitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000