CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
33.5%
Certain NETGEAR devices are affected by command injection. This affects R6300v2 before 1.0.4.8_10.0.77, R6400 before 1.0.1.24, R6700 before 1.0.1.26, R7000 before 1.0.9.10, R7100LG before 1.0.0.32, R7900 before 1.0.1.18, R8000 before 1.0.3.54, R8500 before 1.0.2.100, and D6100 before 1.0.0.50_0.0.50.
Vendor | Product | Version | CPE |
---|---|---|---|
netgear | r6300 | v2 | cpe:2.3:h:netgear:r6300:v2:*:*:*:*:*:*:* |
netgear | r6300_firmware | * | cpe:2.3:o:netgear:r6300_firmware:*:*:*:*:*:*:*:* |
netgear | r6400 | - | cpe:2.3:h:netgear:r6400:-:*:*:*:*:*:*:* |
netgear | r6400_firmware | * | cpe:2.3:o:netgear:r6400_firmware:*:*:*:*:*:*:*:* |
netgear | r6700 | - | cpe:2.3:h:netgear:r6700:-:*:*:*:*:*:*:* |
netgear | r6700_firmware | * | cpe:2.3:o:netgear:r6700_firmware:*:*:*:*:*:*:*:* |
netgear | r7000_firmware | * | cpe:2.3:o:netgear:r7000_firmware:*:*:*:*:*:*:*:* |
netgear | r7000 | - | cpe:2.3:h:netgear:r7000:-:*:*:*:*:*:*:* |
netgear | r7100lg_firmware | * | cpe:2.3:o:netgear:r7100lg_firmware:*:*:*:*:*:*:*:* |
netgear | r7100lg | - | cpe:2.3:h:netgear:r7100lg:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
33.5%