CVE-2025-4978 | Netgear DGND3700 1.1.00.15_1.00.15NA Basic Authentication /BRS_top.html improper authentication

A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1.00.15NA. This affects an unknown part of the file /BRS_top.html of the component Basic Authentication. The manipulation leads to improper authentication.

This vulnerability is uniquely identified as CVE-2025-4978. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

Other products might be affected as well. The vendor was contacted early about this disclosure.

CVE-2025-4978 | Netgear DGND3700 1.1.00.15_1.00.15NA Basic Authentication /BRS_top.html improper authentication

Post correlati

CVE-2024-1151 | Linux Kernel up to 6.8-rc3 Open vSwitch Sub-Component stack-based overflow

CVE-2024-28122 | lestrrat-go jwx up to 1.2.28/2.0.20 resource consumption (GHSA-hj3v-m684-v259)

CVE-2024-52871 | Flagsmith up to 2.134.0 Setting access control

CVE-2023-37926 | Zyxel ATP/USG FLEX/USG FLEX 50/USG20-VPN/VPN CLI Command buffer overflow