Vulnerabilities > CVE-2019-13394 - Improper Restriction of Excessive Authentication Attempts vulnerability in Netgear Cg3700B Firmware 2.02.03

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
netgear
CWE-307
NVD
Published: 2020-03-13
Updated: 2021-07-21

Summary

The Voo branded NETGEAR CG3700b custom firmware V2.02.03 uses HTTP Basic Authentication over cleartext HTTP.

Vulnerable Configurations

Part Description Count
OS
Netgear
1
Hardware
Netgear
1

Common Weakness Enumeration (CWE)

References