¡¾Îó²îͨ¸æ¡¿NetgearÖÇÄܽ»Á÷»ú9Ô¶à¸öÇå¾²Îó²î

Ðû²¼Ê±¼ä 2021-09-07

0x00 Îó²î¸ÅÊö

Netgear£¨ÃÀ¹úÍø¼þ¹«Ë¾£©ÊÇÈ«ÇòÁìÏȵÄÆóÒµÍøÂç½â¾ö¼Æ»®ÌṩÉ̺ÍÊý×Ö¼ÒÍ¥ÍøÂçÓ¦ÓÃÌᳫÕߣ¬£¬£¬£¬£¬ £¬£¬ÎªÈ«ÇòÉÌÓÃÆóÒµÓû§ºÍ¼ÒͥСÎÒ˽¼ÒÓû§ÌṩÇáÓ¯µÄ¸ßÖÊÁ¿ÍøÂç½â¾ö¼Æ»®¡£¡£¡£¡£¡£¡£¡£ ¡£Í¬Ê±£¬£¬£¬£¬£¬ £¬£¬NetgearÒ²ÔÚΪȫÇò¶¥¼¶ÔËÓªÉÌÌṩÍøÂç²úÆ·£¬£¬£¬£¬£¬ £¬£¬ÒÔ×ÊÖúÔËÓªÉÌΪÆäÓû§¹¹½¨Êý×Ö¼ÒÍ¥¡£¡£¡£¡£¡£¡£¡£ ¡£

2021Äê9ÔÂ3ÈÕ£¬£¬£¬£¬£¬ £¬£¬NetgearÐû²¼Ç徲ͨ¸æ£¬£¬£¬£¬£¬ £¬£¬ÐÞ¸´ÁËÆä¶àÖÖ²úÆ·£¨Ö÷ҪΪÖÇÄܽ»Á÷»ú£©ÖеÄ3¸öÇå¾²Îó²î£¬£¬£¬£¬£¬ £¬£¬¹¥»÷Õß¿ÉÄÜ»áÀÄÓÃÕâЩÎó²îÀ´¿ØÖÆÊÜÓ°ÏìµÄ×°±¸¡£¡£¡£¡£¡£¡£¡£ ¡£

 

0x01 Îó²îÏêÇé

image.png

Netgear ½«ÕâЩÎó²îʶ±ðΪ PSV-2021-0140¡¢PSV-2021-0144ºÍPSV-2021-0145£¬£¬£¬£¬£¬ £¬£¬ÏÖÔÚÔÝδ·ÖÅÉCVE±àºÅ¡£¡£¡£¡£¡£¡£¡£ ¡£Õâ3¸öÎó²îµÄ´úºÅ»®·ÖΪ:

Demon's Cries

¸ÃÎó²îΪÉí·ÝÑéÖ¤ÈƹýÎó²î£¬£¬£¬£¬£¬ £¬£¬ÆäCVSSv3ÆÀ·ÖΪ8.8/9.8¡£¡£¡£¡£¡£¡£¡£ ¡£¹¥»÷Õß¿ÉÒÔʹÓôËÎó²î¿ØÖÆÒ×Êܹ¥»÷µÄ×°±¸£¬£¬£¬£¬£¬ £¬£¬µ«ÒªÊ¹ÓôËÎó²î£¬£¬£¬£¬£¬ £¬£¬ÐèÒªNetgear ÖÇÄÜ¿ØÖÆÖÐÐÄ (SCC) ¹¦Ð§´¦Óڻ״̬£¬£¬£¬£¬£¬ £¬£¬¶øĬÈÏÉèÖÃÖÐÒѽ«Æä¹Ø±Õ¡£¡£¡£¡£¡£¡£¡£ ¡£ÏÖÔÚ´ËÎó²îµÄPoC/EXPÒѾ­¹ûÕæ¡£¡£¡£¡£¡£¡£¡£ ¡£

 

Draconian Fear

¸ÃÎó²îΪÉí·ÝÑé֤ЮÖÆÎó²î£¬£¬£¬£¬£¬ £¬£¬ÆäCVSSv3ÆÀ·ÖΪ7.8¡£¡£¡£¡£¡£¡£¡£ ¡£¸ÃÎó²îÐèÒªÓëÖÎÀíÔ±ÏàͬµÄÍâµØ IP µØµãÀ´Ð®ÖƻỰָµ¼ÐÅÏ¢£¬£¬£¬£¬£¬ £¬£¬ÀÖ³ÉʹÓôËÎó²îµÄ¹¥»÷Õß½«ÓµÓжÔ×°±¸ Web Óû§½çÃæµÄÖÎÀíÔ±»á¼ûȨÏÞ£¬£¬£¬£¬£¬ £¬£¬´Ó¶øÍêÈ«¿ØÖÆ×°±¸¡£¡£¡£¡£¡£¡£¡£ ¡£¸ÃÎó²îµÄ¹¥»÷ÏòÁ¿ÎªÍâµØ£¬£¬£¬£¬£¬ £¬£¬¹¥»÷ÖØƯºóµÍ£¬£¬£¬£¬£¬ £¬£¬ÇÒÎÞÐèÓû§½»»¥¡£¡£¡£¡£¡£¡£¡£ ¡£ÏÖÔÚ´ËÎó²îµÄPoC/EXPÒѾ­¹ûÕæ¡£¡£¡£¡£¡£¡£¡£ ¡£

 

Seventh Inferno

¸ÃÎó²îµÄÏêϸÐÅÏ¢½«ÓÚ 9 Ô 13 ÈÕ»òÖ®ºóÐû²¼£¬£¬£¬£¬£¬ £¬£¬ÏÖÔÚÉÐδ¹ûÕæ¡£¡£¡£¡£¡£¡£¡£ ¡£

 

0x02 ´¦Öóͷ£½¨Òé

ÏÖÔÚNETGEAR ÒÑÕë¶ÔÒÔϲúÆ·ÐͺÅÉϵĶà¸öÇå¾²Îó²îÐû²¼Á˲¹¶¡£¬£¬£¬£¬£¬ £¬£¬½¨ÒéʹÓÃÒÔÏÂÊÜÓ°ÏìÐͺŵÄÓû§ÊµÊ±Éý¼¶¸üÐÂÖÁ×îа汾£º

GC108P£¨×îй̼þ°æ±¾£º1.0.8.2£©

GC108PP£¨×îй̼þ°æ±¾£º1.0.8.2£©

GS108Tv3£¨×îй̼þ°æ±¾£º7.0.7.2£©

GS110TPP£¨×îй̼þ°æ±¾£º7.0.7.2£©

GS110TPv3£¨×îй̼þ°æ±¾£º7.0.7.2£©

GS110TUP£¨×îй̼þ°æ±¾£º1.0.5.3£©

GS308T£¨×îй̼þ°æ±¾£º1.0.3.2£©

GS310TP£¨×îй̼þ°æ±¾£º1.0.3.2£©

GS710TUP£¨×îй̼þ°æ±¾£º1.0.5.3£©

GS716TP£¨×îй̼þ°æ±¾£º1.0.4.2£©

GS716TPP£¨×îй̼þ°æ±¾£º1.0.4.2£©

GS724TPP£¨×îй̼þ°æ±¾£º2.0.6.3£©

GS724TPv2£¨×îй̼þ°æ±¾£º2.0.6.3£©

GS728TPPv2£¨×îй̼þ°æ±¾£º6.0.8.2£©

GS728TPv2£¨×îй̼þ°æ±¾£º6.0.8.2£©

GS750E£¨×îй̼þ°æ±¾£º1.0.1.10£©

GS752TPP£¨×îй̼þ°æ±¾£º6.0.8.2£©

GS752TPv2£¨×îй̼þ°æ±¾£º6.0.8.2£©

MS510TXM£¨×îй̼þ°æ±¾£º1.0.4.2£©

MS510TXUP£¨×îй̼þ°æ±¾£º1.0.4.2£©

 

ÏÂÔØÁ´½Ó£º

https://www.netgear.com/support/

 

0x03 ²Î¿¼Á´½Ó

https://kb.netgear.com/000063978/Security-Advisory-for-Multiple-Vulnerabilities-on-Some-Smart-Switches-PSV-2021-0140-PSV-2021-0144-PSV-2021-0145

https://thehackernews.com/2021/09/critical-auth-bypass-bug-affect-netgear.html

https://www.bleepingcomputer.com/news/security/netgear-fixes-severe-security-bugs-in-over-a-dozen-smart-switches/

https://gynvael.coldwind.pl/?id=740

https://gynvael.coldwind.pl/?id=741

 

0x04 ¸üа汾

°æ±¾

ÈÕÆÚ

ÐÞ¸ÄÄÚÈÝ

V1.0

2021-09-07

Ê×´ÎÐû²¼

 

0x05 Îĵµ¸½Â¼

CNVD£ºwww.cnvd.org.cn

CNNVD£ºwww.cnnvd.org.cn

CVE£ºcve.mitre.org

CVSS£ºwww.first.org

NVD£ºnvd.nist.gov

 

0x06 ¹ØÓÚ¿­·¢k8

¹Ø×¢ÒÔϹ«Öںţ¬£¬£¬£¬£¬ £¬£¬»ñÈ¡¸ü¶à×ÊѶ£º

image.png