What is CVE-2016-5649?

CVE-2016-5649 is a vulnerability in Netgear Dgn2200, classified under Cleartext Transmission of Sensitive Information. Published 2018-07-24.

Is CVE-2016-5649 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Netgear Dgn2200

CVE-2016-5649

A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V1.0.0.50_7.0.50, and DGND3700, version DGND3700-V1.0.0.17_1.0.17, which can allow a remote attacker to access this page without any authentication…

EPSS: 0.592 (98.3th percentile) — read the EPSS interpretation.

Affected products

Netgear Dgn2200 — versions DGN2200-V1.0.0.50_7.0.50
Netgear Dgnd3700 — versions DGND3700-V1.0.0.17_1.0.17

Weakness classification (CWE)

CWE-319 — Cleartext Transmission of Sensitive Information

Public proof-of-concept exploits

References

packetstormsecurity.com/files/140342/Netgear-DGN2200-DGND3700-WNDR4500-Informat… (x_refsource_MISC)
packetstormsecurity.com/files/152675/Netgear-DGN2200-DGND3700-Admin-Password-Di… (x_refsource_MISC)

Frequently asked questions

What is CVE-2016-5649?: CVE-2016-5649 is a vulnerability in Netgear Dgn2200, classified under Cleartext Transmission of Sensitive Information. Published 2018-07-24.
Is CVE-2016-5649 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.