Sensitive Information Disclosure in NETGEAR Router Devices
CVE-2018-21139

7.1HIGH

Key Information:

Vendor
Netgear
Status
D1500 Firmware
Vendor
CVE Published:
23 April 2020

Summary

Certain NETGEAR router devices are susceptible to a vulnerability that allows for the disclosure of sensitive information. Models such as D1500, D500, and several others prior to specific firmware versions are impacted. This issue may expose critical data, potentially compromising user privacy and device security. Users of these devices are advised to upgrade to the latest firmware versions to mitigate risks and enhance protection against unauthorized access.

References

https://kb.netgear.com/000060220/Security-Advisory-for-Se...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.