HIGH✓ PATCH🇬🇧 English

CVE-2024-36790

CVSS 8.8v3.1pub. 2024-06-07upd. 2025-05-29

Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 was discovered to store credentials in plaintext.

oryginał EN
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear Wnr614

    HW
    Netgear
    wszystkie wersje
  • Netgear Wnr614 Firmware

    OS
    Netgear
    1.1.0.54_1.0.1
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2016-10174CRITICAL9.8⚠ KEVten sam produkt

The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL...

CVE-2024-36789HIGH8.1ten sam produkt

An issue in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to create passwords that do not con...

CVE-2024-36792HIGH8.2ten sam produkt

An issue in the implementation of the WPS in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to...

CVE-2024-36787HIGH8.8ten sam produkt

An issue in Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 allows attackers to bypass authentication and access...

CVE-2016-11057HIGH7.5ten sam produkt

Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-...