Vulnerability Details CVE-2021-44262
A vulnerability is in the 'MNU_top.htm' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes some key information for the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://github.com/zer0yu/CVE_Request/blob/master/netgear/Netgear_W104_unauthorized_access_vulnerability_second.md
- https://www.netgear.com/about/security/
- https://github.com/zer0yu/CVE_Request/blob/master/netgear/Netgear_W104_unauthorized_access_vulnerability_second.md
- https://www.netgear.com/about/security/
Products affected by CVE-2021-44262
-
cpe:2.3:h:netgear:mbr1517:v2
-
cpe:2.3:h:netgear:wac104:-
-
cpe:2.3:h:netgear:wnce3001:-
-
cpe:2.3:o:netgear:mbr1517_firmware:*
-
cpe:2.3:o:netgear:wac104_firmware:-
-
cpe:2.3:o:netgear:wac104_firmware:1.0.4.13
-
cpe:2.3:o:netgear:wnce3001_firmware:-