CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
38.5%
Netgear DC112A 1.0.0.64, EX6200 1.0.3.94 and R6300v2 1.0.4.8 were discovered to contain a buffer overflow via the http_passwd parameter in password.cgi.
Vendor | Product | Version | CPE |
---|---|---|---|
netgear | dc112a_firmware | 1.0.0.64 | cpe:2.3:o:netgear:dc112a_firmware:1.0.0.64:*:*:*:*:*:*:* |
netgear | dc112a | - | cpe:2.3:h:netgear:dc112a:-:*:*:*:*:*:*:* |
netgear | ex6200_firmware | 1.0.3.94 | cpe:2.3:o:netgear:ex6200_firmware:1.0.3.94:*:*:*:*:*:*:* |
netgear | ex6200 | - | cpe:2.3:h:netgear:ex6200:-:*:*:*:*:*:*:* |
netgear | r6300v2_firmware | 1.0.4.8 | cpe:2.3:o:netgear:r6300v2_firmware:1.0.4.8:*:*:*:*:*:*:* |
netgear | r6300v2 | - | cpe:2.3:h:netgear:r6300v2:-:*:*:*:*:*:*:* |