Vulnerability Details CVE-2021-44261
A vulnerability is in the 'BRS_top.html' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes firmware version information for the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.0%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- https://github.com/zer0yu/CVE_Request/blob/master/netgear/Netgear_W104_unauthorized_access_vulnerability_first.md
- https://www.netgear.com/about/security/
- https://github.com/zer0yu/CVE_Request/blob/master/netgear/Netgear_W104_unauthorized_access_vulnerability_first.md
- https://www.netgear.com/about/security/
Products affected by CVE-2021-44261
-
cpe:2.3:h:netgear:r6220:-
-
cpe:2.3:h:netgear:r6900:v2
-
cpe:2.3:h:netgear:r7450:-
-
cpe:2.3:h:netgear:r7800:-
-
cpe:2.3:h:netgear:wac104:-
-
cpe:2.3:o:netgear:r6220_firmware:-
-
cpe:2.3:o:netgear:r6900_firmware:-
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.14
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.16
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.20
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.22
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.26
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.28
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.30
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.34
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.44
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.46
-
cpe:2.3:o:netgear:r6900_firmware:1.0.1.48
-
cpe:2.3:o:netgear:r6900_firmware:1.0.2.16
-
cpe:2.3:o:netgear:r6900_firmware:1.0.2.26
-
cpe:2.3:o:netgear:r6900_firmware:1.0.2.4
-
cpe:2.3:o:netgear:r6900_firmware:1.0.2.8
-
cpe:2.3:o:netgear:r6900_firmware:1.1.0.42
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.12
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.14
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.16
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.2
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.24
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.36
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.4
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.62
-
cpe:2.3:o:netgear:r6900_firmware:1.2.0.76
-
cpe:2.3:o:netgear:r7450_firmware:-
-
cpe:2.3:o:netgear:r7450_firmware:1.2.0.36
-
cpe:2.3:o:netgear:r7450_firmware:1.2.0.50
-
cpe:2.3:o:netgear:r7450_firmware:1.2.0.62
-
cpe:2.3:o:netgear:r7450_firmware:1.2.0.72
-
cpe:2.3:o:netgear:r7450_firmware:1.2.0.74
-
cpe:2.3:o:netgear:r7450_firmware:1.2.0.76
-
cpe:2.3:o:netgear:r7800_firmware:-
-
cpe:2.3:o:netgear:r7800_firmware:1.0.1.30
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.16
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.28
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.30
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.32
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.36
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.38
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.40
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.42
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.44
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.46
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.52
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.58
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.60
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.62
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.68
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.74
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.78
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.80
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.90
-
cpe:2.3:o:netgear:r7800_firmware:v1.0.11.100_10.2.100
-
cpe:2.3:o:netgear:r7800_firmware:v1.0.9.6_1.2.19
-
cpe:2.3:o:netgear:wac104_firmware:-
-
cpe:2.3:o:netgear:wac104_firmware:1.0.4.13