{"vulnerability": "CVE-2020-27866", "sightings": [{"uuid": "2a1966db-3b43-4173-8444-8be48c07d195", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27866", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2888", "content": "#WLAN_Security\n1. NuCom 11N Wireless Router 5.07.90 - Remote Privilege Escalation (PoC)\nhttps://www.exploit-db.com/exploits/49634 \n2. CVE-2020-17409, CVE-2020-27866:\nNETGEAR Multiple Routers mini_httpd Authentication Bypass Vulnerability (PoC)\nhttps://www.zerodayinitiative.com/blog/2021/3/11/the-battle-between-white-box-and-black-box-bug-hunting-in-wireless-routers", "creation_timestamp": "2021-03-17T13:30:07.000000Z"}, {"uuid": "bb8644f6-21c8-4646-8290-79248f7b157f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27866", "type": "seen", "source": "https://t.me/cibsecurity/25827", "content": "\u203c CVE-2021-35973 \u203c\n\nNETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/mini_httpd, allowing an unauthenticated attacker to invoke any action by adding the &currentsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows the attacker to change the web UI password, and eventually to enable debug mode (telnetd) and gain a shell on the device as the admin limited-user account (however, escalation to root is simple because of weak permissions on the /etc/ directory).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-30T18:31:54.000000Z"}]}