Vulnerability Details CVE-2021-44262
A vulnerability is in the 'MNU_top.htm' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes some key information for the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.4%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://github.com/zer0yu/CVE_Request/blob/master/netgear/Netgear_W104_unauthorized_access_vulnerability_second.md
- https://www.netgear.com/about/security/
- https://github.com/zer0yu/CVE_Request/blob/master/netgear/Netgear_W104_unauthorized_access_vulnerability_second.md
- https://www.netgear.com/about/security/
Products affected by CVE-2021-44262
-
cpe:2.3:h:netgear:mbr1517:v2
-
cpe:2.3:h:netgear:wac104:-
-
cpe:2.3:h:netgear:wnce3001:-
-
cpe:2.3:o:netgear:mbr1517_firmware:*
-
cpe:2.3:o:netgear:wac104_firmware:-
-
cpe:2.3:o:netgear:wac104_firmware:1.0.4.13
-
cpe:2.3:o:netgear:wnce3001_firmware:-