HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2018-21096

CVSS 7.4v3.1pub. 2020-04-27upd. 2024-11-21

Certain NETGEAR devices are affected by CSRF. This affects WAC120 before 2.1.7, WAC505 before 5.0.5.4, WAC510 before 5.0.5.4, WNAP320 before 3.7.11.4, WNAP210v2 before 3.7.11.4, WNDAP350 before 3.7.11.4, WNDAP360 before 3.7.11.4, WNDAP660 before 3.7.11.4, WNDAP620 before 2.1.7, WND930 before 2.1.5, and WN604 before 3.3.10.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
  • Netgear Wac120

    HW
    Netgear
    wszystkie wersje
  • Netgear Wac120 Firmware

    OS
    Netgear
    < 2.1.7
  • Netgear Wac505

    HW
    Netgear
    wszystkie wersje
  • Netgear Wac505 Firmware

    OS
    Netgear
    < 5.0.5.4
  • Netgear Wac510

    HW
    Netgear
    wszystkie wersje
  • Netgear Wac510 Firmware

    OS
    Netgear
    < 5.0.5.4
  • Netgear Wn604

    HW
    Netgear
    wszystkie wersje
  • Netgear Wn604 Firmware

    OS
    Netgear
    < 3.3.10
  • Netgear Wnap210

    HW
    Netgear
    v2
  • Netgear Wnap210 Firmware

    OS
    Netgear
    < 3.7.11.4
  • Netgear Wnap320

    HW
    Netgear
    wszystkie wersje
  • Netgear Wnap320 Firmware

    OS
    Netgear
    < 3.7.11.4
  • Netgear Wnd930

    HW
    Netgear
    wszystkie wersje
  • Netgear Wnd930 Firmware

    OS
    Netgear
    < 2.1.5
  • Netgear Wndap350

    HW
    Netgear
    wszystkie wersje
  • Netgear Wndap350 Firmware

    OS
    Netgear
    < 3.7.11.4
  • Netgear Wndap360

    HW
    Netgear
    wszystkie wersje
  • Netgear Wndap360 Firmware

    OS
    Netgear
    < 3.7.11.4
  • Netgear Wndap620

    HW
    Netgear
    wszystkie wersje
  • Netgear Wndap620 Firmware

    OS
    Netgear
    < 2.1.7
  • Netgear Wndap660

    HW
    Netgear
    wszystkie wersje
  • Netgear Wndap660 Firmware

    OS
    Netgear
    < 3.7.11.4
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2016-1555CRITICAL9.8⚠ KEVten sam produkt

(1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php ...

CVE-2018-21097CRITICAL9.8ten sam produkt

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This aff...

CVE-2018-21132CRITICAL9.8ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects WAC505 before 5.0.0.17 and WAC510 ...

CVE-2018-21131CRITICAL9.1ten sam produkt

Certain NETGEAR devices are affected by unauthenticated firmware downgrade. This affects WAC505 before 5.0.0.1...

CVE-2018-21133CRITICAL9.8ten sam produkt

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This aff...