Vulnerability Details CVE-2024-52016
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to multiple stack overflow vulnerabilities in the component wlg_adv.cgi via the apmode_dns1_pri and apmode_dns1_sec parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted POST request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.4%
CVSS Severity
CVSS v3 Score 5.7
References
Products affected by CVE-2024-52016
-
cpe:2.3:h:netgear:r6400v2:-
-
cpe:2.3:h:netgear:r7000p:-
-
cpe:2.3:h:netgear:r8500:-
-
cpe:2.3:h:netgear:xr300:-
-
cpe:2.3:o:netgear:r6400v2_firmware:1.0.4.128
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.3.154
-
cpe:2.3:o:netgear:r8500_firmware:1.0.2.160
-
cpe:2.3:o:netgear:xr300_firmware:1.0.3.78