CVE-2021-20175

Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the SOAP interface. By default, all communication to/from the device's SOAP Interface (port 5000) is sent via HTTP, which causes potentially sensitive information (such as usernames and passwords) to be transmitted in cleartext
References
Link Resource
https://www.tenable.com/security/research/tra-2021-57 Third Party Advisory
Configurations

Configuration 1


Information

Published : 2021-12-30 10:15

Updated : 2022-01-11 02:42


NVD link : CVE-2021-20175

Mitre link : CVE-2021-20175

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information