Netgear router exposed credentials in plaintext
CVE-2024-36790

8.8HIGH

Key Information:

Vendor
Netgear
Vendor
CVE Published:
7 June 2024

Summary

A security issue has been identified in specific Netgear router models where user credentials are stored in plaintext. This exposure potentially allows attackers to gain unauthorized access to the device, compromising user security and privacy. Devices affected include the WNR614 and JNR1010V2 models, as well as the N300-V1.1.0.54_1.0.1 version. It is crucial for users to be aware of this vulnerability to implement necessary security measures.

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.