MEDIUM🇬🇧 English

CVE-2021-44261

CVSS 5.3v3.1pub. 2022-03-17upd. 2024-11-21

A vulnerability is in the 'BRS_top.html' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes firmware version information for the device.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
  • Netgear R6220

    HW
    Netgear
    wszystkie wersje
  • Netgear R6220 Firmware

    OS
    Netgear
    ≤ 1.1.0.34_1.0.1
  • Netgear R6900

    HW
    Netgear
    v2
  • Netgear R6900 Firmware

    OS
    Netgear
    wszystkie wersje
  • Netgear R7450

    HW
    Netgear
    wszystkie wersje
  • Netgear R7450 Firmware

    OS
    Netgear
    wszystkie wersje
  • Netgear R7800

    HW
    Netgear
    wszystkie wersje
  • Netgear R7800 Firmware

    OS
    Netgear
    wszystkie wersje
  • Netgear Wac104

    HW
    Netgear
    wszystkie wersje
  • Netgear Wac104 Firmware

    OS
    Netgear
    ≤ 1.0.4.13
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2016-10174CRITICAL9.8⚠ KEVten sam produkt

The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL...

CVE-2023-30280CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability found in Netgear R6900 v.1.0.2.26, R6700v3 v.1.0.4.128, R6700 v.1.0.0.26 allows ...

CVE-2021-45619CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects EX6200v...

CVE-2021-45501CRITICAL9.4ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects AC2400 before 1.1.0.84, AC2600 bef...

CVE-2021-45618CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7800 b...