CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-4978

A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1.00.15NA. This affects an unknown part of the file /BRS_top.html of the component Basic Authentication. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other products might be affected as well. The vendor was contacted early about this disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://github.com/at0de/my_vulns/blob/main/Netgear/DGND3700v2/backdoor.md
https://vuldb.com/?ctiid.309639
https://vuldb.com/?id.309639
https://vuldb.com/?submit.564712
https://www.netgear.com/
https://github.com/at0de/my_vulns/blob/main/Netgear/DGND3700v2/backdoor.md

Products affected by CVE-2025-4978

Netgear » Dgnd3700 » Version: v2

cpe:2.3:h:netgear:dgnd3700:v2
Netgear » Dgnd3700 Firmware » Version: 1.1.00.15_1.00.15na

cpe:2.3:o:netgear:dgnd3700_firmware:1.1.00.15_1.00.15na

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-4978

Products

Pricing

Contact Us