logo_clicknbuy.png

CVE-2025-4980 – Netgear DGND3700 HTTP Information Disclosure Vulnerability

The following table lists the changes that have been made to the
CVE-2025-4980 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • New CVE Received
    by [email protected]

    May. 20, 2025

    Action Type Old Value New Value
    Added Description A vulnerability has been found in Netgear DGND3700 1.1.00.15_1.00.15NA and classified as problematic. This vulnerability affects unknown code of the file /currentsetting.htm of the component mini_http. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Other products might be affected as well. The vendor was contacted early about this disclosure.
    Added CVSS V4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
    Added CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    Added CVSS V2 (AV:N/AC:L/Au:N/C:P/I:N/A:N)
    Added CWE CWE-200
    Added CWE CWE-284
    Added Reference https://github.com/at0de/my_vulns/blob/main/Netgear/DGND3700v2/currentsetting.md
    Added Reference https://vuldb.com/?ctiid.309640
    Added Reference https://vuldb.com/?id.309640
    Added Reference https://vuldb.com/?submit.564714
    Added Reference https://www.netgear.com/
  • CVE Modified
    by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    May. 20, 2025

    Action Type Old Value New Value
    Added Reference https://github.com/at0de/my_vulns/blob/main/Netgear/DGND3700v2/currentsetting.md
Share the Post:

Related Posts