Описание
An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v1.2.3.7 and earlier.
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.3.7 (включая)
Одновременно
cpe:2.3:o:netgear:wnr2000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wnr2000:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00455
Низкий
8.1 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-494
Связанные уязвимости
CVSS3: 8.1
github
около 3 лет назад
An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v1.2.3.7 and earlier.
EPSS
Процентиль: 63%
0.00455
Низкий
8.1 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-494