CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-36788

Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies. This allows attackers to possibly intercept and access sensitive communications between the router and connected devices.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.9%

CVSS Severity

CVSS v3 Score 4.8

References

https://redfoxsec.com/blog/security-advisory-multiple-vulnerabilities-in-netgear-wnr614-router/
https://redfoxsec.com/blog/security-advisory-multiple-vulnerabilities-in-netgear-wnr614-router/

Products affected by CVE-2024-36788

Netgear » Wnr614 » Version: N/A

cpe:2.3:h:netgear:wnr614:-
Netgear » Wnr614 Firmware » Version: 1.1.0.54_1.0.1

cpe:2.3:o:netgear:wnr614_firmware:1.1.0.54_1.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-36788

Products

Pricing

Contact Us