Описание
Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the web interface. By default, all communication to/from the device's web interface is sent via HTTP, which causes potentially sensitive information (such as usernames and passwords) to be transmitted in cleartext.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:netgear:r6700_firmware:1.0.4.120:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r6700:-:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00148
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-319
Связанные уязвимости
github
около 4 лет назад
Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the web interface. By default, all communication to/from the device's web interface is sent via HTTP, which causes potentially sensitive information (such as usernames and passwords) to be transmitted in cleartext.
EPSS
Процентиль: 36%
0.00148
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-319