CVE-2016-11055
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
21.6%
Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 before 2017-01-11, D500 before 2017-01-11, DST6501 before 2017-01-11, JNR1010v1 before 2017-01-11, JWNR2000Tv3 before 2017-01-11, JWNR2010v3 before 2017-01-11, PLW1000 before 2017-01-11, PLW1010 before 2017-01-11, WNR500 before 2017-01-11, WNR612v3 before 2017-01-11, N450 before 2017-01-11, and CG3000Dv2 before 2017-01-11.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| netgear | cm400_firmware | * | cpe:2.3:o:netgear:cm400_firmware:*:*:*:*:*:*:*:* |
| netgear | cm400 | - | cpe:2.3:h:netgear:cm400:-:*:*:*:*:*:*:* |
| netgear | cm600_firmware | * | cpe:2.3:o:netgear:cm600_firmware:*:*:*:*:*:*:*:* |
| netgear | cm600 | - | cpe:2.3:h:netgear:cm600:-:*:*:*:*:*:*:* |
| netgear | d1500_firmware | * | cpe:2.3:o:netgear:d1500_firmware:*:*:*:*:*:*:*:* |
| netgear | d1500 | - | cpe:2.3:h:netgear:d1500:-:*:*:*:*:*:*:* |
| netgear | d500_firmware | * | cpe:2.3:o:netgear:d500_firmware:*:*:*:*:*:*:*:* |
| netgear | d500 | - | cpe:2.3:h:netgear:d500:-:*:*:*:*:*:*:* |
| netgear | dst6501_firmware | * | cpe:2.3:o:netgear:dst6501_firmware:*:*:*:*:*:*:*:* |
| netgear | dst6501 | - | cpe:2.3:h:netgear:dst6501:-:*:*:*:*:*:*:* |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
21.6%