Bypass Authentication Vulnerability in Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1
CVE-2024-36787

8.8HIGH

Key Information:

Vendor: Netgear
Status: Wnr614 Firmware
Vendor: CVE Published:; 7 June 2024

What is CVE-2024-36787?

A security issue in Netgear WNR614 and JNR1010V2 routers allows unauthorized users to bypass authentication mechanisms, potentially granting access to sensitive administrative functionalities. This vulnerability exposes routers to an array of security risks, including unauthorized configuration changes and unauthorized control of the device. Proper security measures and updates are essential to mitigate the risk associated with this flaw.

References

https://redfoxsec.com/blog/security-advisory-multiple-vul...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 7, 2024