Sensitive Information Disclosure in NETGEAR XR1000 Devices
CVE-2021-45654

9.6CRITICAL

Key Information:

Vendor
Netgear
Vendor
CVE Published:
26 December 2021

Summary

NETGEAR XR1000 devices prior to version 1.0.0.58 are susceptible to a vulnerability that allows unauthorized access to sensitive information. This issue may potentially expose confidential data, thereby compromising user privacy and security. It is essential to update affected devices to the latest version to mitigate risks associated with this vulnerability.

References

CVSS V3.1

Score:
9.6
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.