NetGear DGND3700 v2 | CVE-2023-51137

A critical security vulnerability has been discovered in the NetGear DGND3700 v2 router, identified as CVE-2023-51137. This vulnerability allows for remote code execution with directory traversal and authentication bypass, enabling attackers to read operating system files. By exploiting this flaw, attackers can circumvent authentication measures and traverse directories to execute arbitrary code remotely, potentially compromising the router’s security and integrity. This vulnerability poses a significant risk to affected devices as it allows attackers to gain unauthorized access and manipulate system files. NetGear DGND3700 v2 router users are strongly advised to apply patches provided by the vendor or implement mitigations to address this vulnerability promptly and protect their network infrastructure from exploitation.

Discovered by Hazard Lab.