¡¾Â©¶´Í¨¸æ¡¿NetgearÖÇÄܽ»»»»ú9Ô¶à¸öÄþ¾²Â©¶´

Ðû²¼Ê±¼ä 2021-09-07

0x00 ©¶´¸ÅÊö

Netgear£¨ÃÀ¹úÍø¼þ¹«Ë¾£©ÊÇÈ«ÇòÁìÏȵÄÆóÒµÍøÂç½â¾ö·½°¸ÌṩÉ̺ÍÊý×Ö¼ÒÍ¥ÍøÂçÓ¦ÓÃÌᳫÕߣ¬ÎªÈ«ÇòÉÌÓÃÆóÒµÓû§ºÍ¼ÒÍ¥¸öÈËÓû§Ìṩ¼ò±ãµÄ¸ßÖÊÁ¿ÍøÂç½â¾ö·½°¸¡£Í¬Ê±£¬NetgearÒ²ÔÚΪȫÇò¶¥¼¶ÔËÓªÉÌÌṩÍøÂç²úÎÒÔ×ÊÖúÔËÓªÉÌΪÆäÓû§¹¹½¨Êý×Ö¼ÒÍ¥¡£

2021Äê9ÔÂ3ÈÕ£¬NetgearÐû²¼Äþ¾²Í¨¸æ£¬ÐÞ¸´ÁËÆä¶àÖÖ²úÎÖ÷ҪΪÖÇÄܽ»»»»ú£©ÖеÄ3¸öÄþ¾²Â©¶´£¬¹¥»÷Õß¿ÉÄÜ»áÀÄÓÃÕâЩ©¶´À´¿ØÖÆÊÜÓ°ÏìµÄÉ豸¡£

 

0x01 ©¶´ÏêÇé

image.png

Netgear ½«ÕâЩ©¶´Ê¶±ðΪ PSV-2021-0140¡¢PSV-2021-0144ºÍPSV-2021-0145£¬Ä¿Ç°ÔÝδ·ÖÅäCVE±àºÅ¡£Õâ3¸ö©¶´µÄ´úºÅ·Ö±ðΪ:

Demon's Cries

¸Ã©¶´ÎªÉí·ÝÑéÖ¤Èƹý©¶´£¬ÆäCVSSv3ÆÀ·ÖΪ8.8/9.8¡£¹¥»÷Õß¿ÉÒÔÀûÓôË©¶´¿ØÖÆÒ×Êܹ¥»÷µÄÉ豸£¬µ«ÒªÀûÓôË©¶´£¬ÐèÒªNetgear ÖÇÄÜ¿ØÖÆÖÐÐÄ (SCC) ¹¦Ð§´¦Óڻ״̬£¬¶øĬÈÏÅäÖÃÖÐÒѽ«Æä¹Ø±Õ¡£Ä¿Ç°´Ë©¶´µÄPoC/EXPÒѾ­¹ûÈ»¡£

 

Draconian Fear

¸Ã©¶´ÎªÉí·ÝÑéÖ¤½Ù³Ö©¶´£¬ÆäCVSSv3ÆÀ·ÖΪ7.8¡£¸Ã©¶´ÐèÒªÓë¹ÜÀíÔ±ÏàͬµÄµ±µØ IP µØÖ·À´½Ù³Ö»á»°Òýµ¼ÐÅÏ¢£¬ÀÖ³ÉÀûÓôË©¶´µÄ¹¥»÷Õß½«ÓµÓжÔÉ豸 Web Óû§½çÃæµÄ¹ÜÀíÔ±·ÃÎÊȨÏÞ£¬´Ó¶øÍêÈ«¿ØÖÆÉ豸¡£¸Ã©¶´µÄ¹¥»÷ÏòÁ¿Îªµ±µØ£¬¹¥»÷ÅÓ´ó¶ÈµÍ£¬ÇÒÎÞÐèÓû§½»»¥¡£Ä¿Ç°´Ë©¶´µÄPoC/EXPÒѾ­¹ûÈ»¡£

 

Seventh Inferno

¸Ã©¶´µÄÏêϸÐÅÏ¢½«ÓÚ 9 Ô 13 ÈÕ»òÖ®ºóÐû²¼£¬Ä¿Ç°ÉÐδ¹ûÈ»¡£

 

0x02 ´¦Öý¨Òé

Ä¿Ç°NETGEAR ÒÑÕë¶ÔÒÔϲúÎïÐͺÅÉϵĶà¸öÄþ¾²Â©¶´Ðû²¼Á˲¹¶¡£¬½¨ÒéʹÓÃÒÔÏÂÊÜÓ°ÏìÐͺŵÄÓû§¼°Ê±Éý¼¶¸üÐÂÖÁ×îа汾£º

GC108P£¨×îй̼þ°æ±¾£º1.0.8.2£©

GC108PP£¨×îй̼þ°æ±¾£º1.0.8.2£©

GS108Tv3£¨×îй̼þ°æ±¾£º7.0.7.2£©

GS110TPP£¨×îй̼þ°æ±¾£º7.0.7.2£©

GS110TPv3£¨×îй̼þ°æ±¾£º7.0.7.2£©

GS110TUP£¨×îй̼þ°æ±¾£º1.0.5.3£©

GS308T£¨×îй̼þ°æ±¾£º1.0.3.2£©

GS310TP£¨×îй̼þ°æ±¾£º1.0.3.2£©

GS710TUP£¨×îй̼þ°æ±¾£º1.0.5.3£©

GS716TP£¨×îй̼þ°æ±¾£º1.0.4.2£©

GS716TPP£¨×îй̼þ°æ±¾£º1.0.4.2£©

GS724TPP£¨×îй̼þ°æ±¾£º2.0.6.3£©

GS724TPv2£¨×îй̼þ°æ±¾£º2.0.6.3£©

GS728TPPv2£¨×îй̼þ°æ±¾£º6.0.8.2£©

GS728TPv2£¨×îй̼þ°æ±¾£º6.0.8.2£©

GS750E£¨×îй̼þ°æ±¾£º1.0.1.10£©

GS752TPP£¨×îй̼þ°æ±¾£º6.0.8.2£©

GS752TPv2£¨×îй̼þ°æ±¾£º6.0.8.2£©

MS510TXM£¨×îй̼þ°æ±¾£º1.0.4.2£©

MS510TXUP£¨×îй̼þ°æ±¾£º1.0.4.2£©

 

ÏÂÔØÁ´½Ó£º

https://www.netgear.com/support/

 

0x03 ²Î¿¼Á´½Ó

https://kb.netgear.com/000063978/Security-Advisory-for-Multiple-Vulnerabilities-on-Some-Smart-Switches-PSV-2021-0140-PSV-2021-0144-PSV-2021-0145

https://thehackernews.com/2021/09/critical-auth-bypass-bug-affect-netgear.html

https://www.bleepingcomputer.com/news/security/netgear-fixes-severe-security-bugs-in-over-a-dozen-smart-switches/

https://gynvael.coldwind.pl/?id=740

https://gynvael.coldwind.pl/?id=741

 

0x04 ¸üа汾

°æ±¾

ÈÕÆÚ

ÐÞ¸ÄÄÚÈÝ

V1.0

2021-09-07

Ê×´ÎÐû²¼

 

0x05 Îĵµ¸½Â¼

CNVD£ºwww.cnvd.org.cn

CNNVD£ºwww.cnnvd.org.cn

CVE£ºcve.mitre.org

CVSS£ºwww.first.org

NVD£ºnvd.nist.gov

 

0x06 ¹ØÓÚ¶«É­Æ½Ì¨

¹Ø×¢ÒÔϹ«Öںţ¬»ñÈ¡¸ü¶à×ÊѶ£º

image.png