Netgear DGND3700 1.1.00.15_1.00.15NA Remote Info Disclosure via mini_http
CVE-2025-4980 Published on May 20, 2025
Netgear DGND3700 mini_http currentsetting.htm information disclosure
A vulnerability has been found in Netgear DGND3700 1.1.00.15_1.00.15NA and classified as problematic. This vulnerability affects unknown code of the file /currentsetting.htm of the component mini_http. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Other products might be affected as well. The vendor was contacted early about this disclosure.
Timeline
Advisory disclosed
VulDB entry created
VulDB entry last update
Weakness Types
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2025-4980 has been classified to as an Information Disclosure vulnerability or weakness.
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2025-4980 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2025-4980
Want to know whenever a new CVE is published for Netgear Dgnd3700 Firmware? stack.watch will email you.
Affected Versions
Netgear DGND3700 Version 1.1.00.15_1.00.15NA is affected by CVE-2025-4980Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.