A vulnerability is in the 'BRS_top.html' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes firmware version information for the device.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NNetgear R6220
HWNetgearwszystkie wersjeNetgear R6220 Firmware
OSNetgear≤ 1.1.0.34_1.0.1Netgear R6900
HWNetgearv2Netgear R6900 Firmware
OSNetgearwszystkie wersjeNetgear R7450
HWNetgearwszystkie wersjeNetgear R7450 Firmware
OSNetgearwszystkie wersjeNetgear R7800
HWNetgearwszystkie wersjeNetgear R7800 Firmware
OSNetgearwszystkie wersjeNetgear Wac104
HWNetgearwszystkie wersjeNetgear Wac104 Firmware
OSNetgear≤ 1.0.4.13
Related vulnerabilities
The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL...
Buffer Overflow vulnerability found in Netgear R6900 v.1.0.2.26, R6700v3 v.1.0.4.128, R6700 v.1.0.0.26 allows ...
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects EX6200v...
Certain NETGEAR devices are affected by authentication bypass. This affects AC2400 before 1.1.0.84, AC2600 bef...
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7800 b...