NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config.
2013-12-19T04:24:48.493
2025-04-11T00:51:21.963
Deferred
CVSSv2: 7.8 (HIGH)
AV:N/AC:L/Au:N/C:C/I:N/A:N
10.0
6.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | netgear | prosafe_firmware | 5.3.0.17 | Yes |
| Hardware | netgear | prosafe_gs725ts | - | Yes |
| Hardware | netgear | prosafe_gs728tps | - | Yes |
| Hardware | netgear | prosafe_gs728ts | - | Yes |
| Hardware | netgear | prosafe_gs752tps | - | Yes |
| Operating System | netgear | prosafe_firmware | ≤ 5.4.1.13 | Yes |
| Operating System | netgear | prosafe_firmware | 5.0.4.4 | Yes |
| Operating System | netgear | prosafe_firmware | 5.3.0.17 | Yes |
| Operating System | netgear | prosafe_firmware | 5.4.0.6 | Yes |
| Operating System | netgear | prosafe_firmware | 5.4.1.10 | Yes |
| Hardware | netgear | prosafe_gs724t | v3 | Yes |
| Hardware | netgear | prosafe_s716t | v2 | Yes |
| Operating System | netgear | prosafe_firmware | 6.1.0.12 | Yes |
| Hardware | netgear | prosafe_gs728txs | - | Yes |
| Hardware | netgear | prosafe_gs752txs | - | Yes |
| Operating System | netgear | prosafe_firmware | ≤ 5.4.1.14 | Yes |
| Operating System | netgear | prosafe_firmware | 5.0.4.4 | Yes |
| Operating System | netgear | prosafe_firmware | 5.3.0.17 | Yes |
| Operating System | netgear | prosafe_firmware | 5.4.0.6 | Yes |
| Operating System | netgear | prosafe_firmware | 5.4.1.10 | Yes |
| Operating System | netgear | prosafe_firmware | 5.4.1.13 | Yes |
| Hardware | netgear | prosafe_gs748t | v4 | Yes |
| Operating System | netgear | prosafe_firmware | 5.4.0.6 | Yes |
| Hardware | netgear | prosafe_gs510tp | - | Yes |