Vulnerabilities > CVE-2017-2137 - Unspecified vulnerability in Netgear Prosafe Plus Configuration Utility 2.3.28
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
LOW Availability impact
NONE Summary
ProSAFE Plus Configuration Utility prior to 2.3.29 allows remote attackers to bypass access restriction and change configurations of the switch via SOAP requests.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://jvn.jp/en/jp/JVN08740778/index.html
- http://jvn.jp/en/jp/JVN08740778/index.html
- https://kb.netgear.com/000038443/Security-Advisory-for-Insecure-SOAP-Access-in-ProSAFE-Plus-Configuration-Utility-PSV-2017-1997
- https://kb.netgear.com/000038443/Security-Advisory-for-Insecure-SOAP-Access-in-ProSAFE-Plus-Configuration-Utility-PSV-2017-1997