Tus kws tshawb fawb txog kev ruaj ntseg tau tshawb pom tag nrho ntawm 11 qhov muaj qhov tsis zoo hauv kev hloov kho firmware tsis ntev los no rau Netgear Nighthawk routers. Cov vulnerabilities tau patched los ntawm Netgear. Piv txwv li, cov routers khaws cov usernames thiab passwords hauv cov ntawv dawb.
Qhov tsis zoo uas tus kws tshawb fawb Jimi Sebree ntawm lub tuam txhab kev ruaj ntseg Tenable pom muaj nyob hauv Nighthawk R6700v3 AC1750-firmware version 1.0.4.120 thiab hauv Nighthawk RAX43, firmware version 1.0.3.96. Cov kev tsis sib haum xeeb sib txawv, tab sis tag nrho cov teeb meem tseem ceeb raws li tus kws tshawb fawb, thiab tsis tas li ntawd txhua tus tau patched los ntawm Netgear.
Qhov teeb meem tseem ceeb tshaj plaws yog sau npe ua CVE-2021-45077 rau RS6700 thiab CVE-2021-1771 rau RAX43. Cov routers khaws cov usernames thiab passwords rau lub cuab yeej thiab muab cov kev pabcuam hauv cov ntsiab lus tseem ceeb ntawm routers, thiab tus password admin yog nyob rau hauv cov ntsiab lus tseem ceeb hauv cov ntaub ntawv teeb tsa ntawm lub router, Sebree sau rau ntawm nws lub vev xaib.
Tsis tas li ntawd, muaj kev pheej hmoo tias cov npe siv thiab cov passwords yuav raug cuam tshuam. Hauv RS6700v3, vim tias cov routers txheem HTTP sivthiab, tsis yog Https, rau txhua qhov kev sib txuas lus nrog lub web interface. Tsis tas li ntawd SOAP interface, ntawm qhov chaw nres nkoj 5000, siv HTTP rau kev sib txuas lus, cia tus passwords thiab usernames raug cuam tshuam.
SOAP interface
Tsis tas li ntawd, lub router yog qhov yooj yim los tswj kev txhaj tshuaj los ntawm post-authentication command txhaj yuam kev hauv qhov hloov tshiab software ntawm lub cuab yeej. Ua kom muaj kev hloov kho tshiab los ntawm SOAP interface ua rau lub cuab yeej muaj kev cuam tshuam rau kev coj mus los ntawm qhov tseem ceeb ua ntej. Tsis tas li ntawd, UART console tiv thaiv tsis txaus, uas tso cai rau txhua tus neeg siv lub cev nkag mus rau lub cuab yeej los ntawm UART chaw nres nkoj los txuas thiab ua haujlwm raws li tus neeg siv hauv paus yam tsis muaj kev lees paub.
Tsis tas li ntawd, lub router siv cov ntawv pov thawj nyuaj rau qee qhov chaw, yog li ntawd tus neeg siv tsis tuaj yeem kho qee qhov chaw ruaj ntseg. Cov no yog encrypted, tab sis raws li cov kws tshawb fawb kuj yooj yim nrhiav nrog rau cov cuab yeej siv rau pej xeem, tso cai rau kev teeb tsa los hloov kho los ntawm leej twg uas nkag mus rau lub router. Tsis tas li ntawd, lub router siv ntau qhov kev paub tsis zoo hauv jQuery cov tsev qiv ntawv thiab hauv minidlna.exe, thaum muaj ntau yam tsis ntev los no.
Netgear Nighthawk R6700
Qhov tsis zoo hauv RS6700 muaj qhov qhab nia CVE ntawm 7.1 ntawm qhov ntsuas ntawm 1 txog 10. Qhov ntawd hnyav, tab sis tsis tseem ceeb. Qhov laj thawj tseem ceeb yog vim li cas tus neeg tawm tsam yuav tsum muaj lub cev nkag mus rau lub router txhawm rau txhawm rau siv qhov tsis zoo. Tsis tas li ntawd, kev siv cov vulnerabilities hauv SOAP interface tsuas yog ua tau yog tias tus neeg tawm tsam twb tau nkag mus lawm. Qhov tsis zoo rau RAX43 muaj qhov qhab nia ntawm 8.8 tawm ntawm 10.
RAX43 kuj tseem siv HTTP los ntawm lub neej ntawd, sau Sebree, thiab siv tib yam tsis zoo jQuery cov tsev qiv ntawv thiab cov tsis muaj zog version ntawm minidlna.exe. Tsis tas li ntawd, RAX43 firmware muaj qhov tsis zoo tshwm sim los ntawm ob kab. Qhov thib ib yog qhov tsis muaj peev xwm overrun vulnerability, qhov thib ob yog qhov tsis txaus ntseeg ntawm kev txhaj tshuaj. Kev sib koom ua ke ob tso cai rau ib tus neeg ua haujlwm tej thaj chaw deb raws li hauv paus, tsis muaj kev lees paub.
Netgear Nighthawk RAX43
Sebree sau tias Tenable tau ceeb toom rau Netgear ntawm qhov tsis zoo rau lub Cuaj Hlis 30. Txawm hais tias Netgear pib teb rau tsab ntawv ceeb toom ntawm qhov tsis zoo thaum lub Kaum Hli, nws siv sijhawm ntev ua ntej txhua yam ua tiav txog nws. Kaum Ob Hlis 29, Netgear muab ceeb toom rau qhov tsis zoo hauv online. Tseem muaj tam sim no firmware tshiab rau ob qho tib si routers muab tso rau hauv online. Sebree tau txiav txim siab thaum Lub Kaum Ob Hlis 30 los nthuav tawm qhov tsis muaj peev xwm nyob rau hauv qhov kev qhia ntawm lub luag haujlwm nthuav tawm, txawm tias Netgear tseem tsis tau muaj zog thawb lub firmware hloov tshiab rau cov neeg siv.
Nighthawk RS6700 yog ib qho ntawm cov routers feem ntau siv hauv tsev. Nws tau teev tseg raws li AC1750 Smart WiFi Router hauv Pricewatch, thiab tau muaj txij li Lub Xya Hli 31, 2019. Qhov tsis zoo yog nyob rau hauv thib peb version ntawm router. RAX43 tau muaj txij thaum Lub Kaum Ob Hlis 30, 2020.