Login Sign Up

CVE-2022-41545

6.4 MEDIUM

📋 TL;DR

This vulnerability exposes Netgear C7800 router administrative credentials to eavesdropping attacks. Attackers can intercept base64-encoded credentials transmitted via insecure HTTP basic authentication, allowing them to gain administrative access to the router. Users of Netgear C7800 routers with vulnerable firmware are affected.

💻 Affected Systems

Products:
  • Netgear C7800 Router
Versions: Firmware version 6.01.07 (possibly others)
Operating Systems: Embedded router OS
Default Config Vulnerable: ⚠️ Yes
Notes: Vulnerable when using default HTTP basic authentication without HTTPS. Requires attacker to be on same network segment.

📦 What is this software?

C7800 Firmware by Netgear

View all CVEs affecting C7800 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attacker gains full administrative control of the router, enabling network traffic interception, DNS hijacking, malware injection, and complete network compromise.

🟠

Likely Case

Attacker captures administrative credentials and gains router access, potentially changing settings, monitoring traffic, or launching attacks against internal devices.

🟢

If Mitigated

With HTTPS enabled and proper network segmentation, risk is limited to attackers with physical network access or compromised internal devices.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires network access and ability to intercept HTTP traffic. Basic authentication credentials are transmitted in every request.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Netgear security advisory for latest patched version

Vendor Advisory: https://www.netgear.com/about/security/

Restart Required: Yes

Instructions:

1. Log into router admin interface. 2. Navigate to firmware update section. 3. Check for and install latest firmware. 4. Reboot router after update.

🔧 Temporary Workarounds

Enable HTTPS for Admin Interface

all

Force HTTPS for administrative access to encrypt credentials in transit

Change Default Credentials

all

Use strong, unique administrative credentials

🧯 If You Can't Patch

  • Isolate router management interface to dedicated VLAN
  • Implement network segmentation to limit attacker lateral movement

🔍 How to Verify

Check if Vulnerable:

Check if router admin interface uses HTTP basic authentication without HTTPS

Check Version:

Check router admin interface for firmware version

Verify Fix Applied:

Verify HTTPS is enforced for admin interface and firmware version is updated

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed login attempts
  • Unusual admin interface access from new IPs

Network Indicators:

  • HTTP traffic to router admin interface containing Authorization headers
  • Unencrypted admin traffic

SIEM Query:

source_ip=router_ip AND http_method=POST AND uri_contains="login" AND NOT protocol="HTTPS"

📊 Metadata

CVE ID: CVE-2022-41545
CVSS v3 Score: 6.4 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-319
EPSS Score: 0.02% exploit probability (4.7th percentile)
Published: February 18, 2025
Last Updated: June 6, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-41545, you might also want to check these:

CVE-2023-33730 9.8

CVE-2023-33730 is a critical privilege escalation vulnerability in Microworld Technologies eScan Man...

Same vulnerability type (CWE-319)
CVE-2022-21829 9.8

This vulnerability in Concrete CMS allows authenticated high-privilege users to download zip files o...

Same vulnerability type (CWE-319)
CVE-2020-5426 9.8

CVE-2020-5426 allows attackers to intercept UAA client tokens transmitted in plaintext over non-TLS ...

Same vulnerability type (CWE-319)