exploitDog

GHSA-qfrw-2r49-g452

Опубликовано: 27 дек. 2021

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBW30 before 2.6.2.2, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, and RBS40V before 2.6.2.8.

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBW30 before 2.6.2.2, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, and RBS40V before 2.6.2.8.

Ссылки

EPSS

Процентиль: 80%

0.01354

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2021-45507

CVSS3: 9.6

nvd

около 4 лет назад

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBW30 before 2.6.2.2, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, and RBS40V before 2.6.2.8.

BDU:2022-00448

CVSS3: 9.6

fstec

больше 4 лет назад

Уязвимость микропрограммного обеспечения Wi-Fi роутеров NETGEAR CBR40, CBR750, RBW30, RBK752, RBR750, RBS750, RBK852, RBR850, RBS850, RBS40V, связанная с недостатками механизма аутентификации, позволяющая нарушителю обойти ограничения безопасности

EPSS

Процентиль: 80%

0.01354

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-287