// For flags

CVE-2019-12510

Auth Bypass Via X-Forwarded-For Header in SOAP API

Severity Score

9.1
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may bypass all authentication checks on the device's "NETGEAR Genie" SOAP API ("/soap/server_sa") by supplying a malicious X-Forwarded-For header of the device's LAN IP address (192.168.1.1) in every request. As a result, an attacker may modify almost all of the device's settings and view various configuration settings.

En NETGEAR Nighthawk X10-R900 versiones anteriores a 1.0.4.26, un atacante puede omitir todas las verificaciones de autenticación en la API SOAP "NETGEAR Genie" ("/soap/server_sa") del dispositivo al suministrar un encabezado X-Forward-For malicioso de la dirección IP de la LAN del dispositivo (192.168.1.1) en cada petición. Como resultado, un atacante puede modificar casi todas las configuraciones del dispositivo y visualizar varias configuraciones.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-06-01 CVE Reserved
  • 2020-02-24 CVE Published
  • 2024-01-31 EPSS Updated
  • 2024-08-04 CVE Updated
  • 2024-08-04 First Exploit
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-345: Insufficient Verification of Data Authenticity
CAPEC
References (1)
URL Tag Source
URL Date SRC
https://www.ise.io/casestudies/sohopelessly-broken-2-0 2024-08-04
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Netgear
Search vendor "Netgear"
 Nighthawk X10-r9000 Firmware
Search vendor "Netgear" for product "Nighthawk X10-r9000 Firmware"
 < 1.0.4.26
Search vendor "Netgear" for product "Nighthawk X10-r9000 Firmware" and version " < 1.0.4.26"
-
Affected
in Netgear
Search vendor "Netgear"
 Nighthawk X10-r9000
Search vendor "Netgear" for product "Nighthawk X10-r9000"
--
Safe