NETGEAR – CSRF – Cross Site Request Forgery

Advisory ID

Vulnerability Information

Cross-site request forgery (CSRF) vulnerability in NETGEAR DGN2200 routers with firmware through allows remote attackers to hijack the authentication of users for requests that perform DNS lookups via the host_name parameter to dnslookup.cgi. NOTE: this issue can be combined with CVE-2017-6334 to execute arbitrary code remotely.

CVSS Base Score


Release Date



RedShift Networks UCTM solution provides the industry’s first complete security solution developed for securing VOIP networks, endpoints and applications. Its dedicated CONDOR labs research team constantly scouts for new attack patterns, advanced penetration testing methods, vulnerabilities identification and roll out of new signatures to subscribed customers on a constant basis. For more information, visit

External Resources