Netgear Router Administrative Web Interface Lacks Transport Encryption By Default  – Full Disclosure

Posted by Ryan Delaney via Fulldisclosure on Feb 16

<!–
# Exploit Title: Netgear Router Administrative Web Interface Lacks
Transport Encryption By Default
# Date: 02-13-2025
# Exploit Author: Ryan Delaney
# Author Contact: ryan.delaney () owasp org
# Vendor Homepage: https://www.netgear.com
# Version: Netgear C7800 Router, F/W 6.01.07, possibly others
# Tested on: Netgear C7800 Router, F/W 6.01.07
# CVE: CVE-2022-41545

The administrative web interface of a Netgear C7800 Router running…
 – Read More  – Full Disclosure