Netgear Nighthawk Luki w zabezpieczeniach

Wersja

1.0.4.120	6
1.0.4.0	6
1.0.4.1	6
1.0.4.2	6
1.0.4.3	6

Przeciwdziałanie

Official Fix	18
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	10

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	26

Wektor dostępu

Not Defined	0
Physical	2
Local	2
Adjacent	12
Network	12

Uwierzytelnianie

Not Defined	0
High	0
Low	10
None	18

Interakcja z użytkownikiem

Not Defined	0
Required	8
None	20

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	4
≤5	0
≤6	6
≤7	6
≤8	6
≤9	6
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	4
≤5	0
≤6	8
≤7	4
≤8	6
≤9	6
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	6
≤6	8
≤7	4
≤8	2
≤9	4
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	6
≤8	2
≤9	6
≤10	6

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	0
<5k	2
<10k	16
<25k	10
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	12
<2k	0
<5k	12
<10k	2
<25k	2
<50k	0
<100k	0
≥100k	0

Affected Versions (29): 1.0.4, 1.0.4.1, 1.0.4.2, 1.0.4.3, 1.0.4.4, 1.0.4.5, 1.0.4.6, 1.0.4.7, 1.0.4.8, 1.0.4.9, 1.0.4.11, 1.0.4.12, 1.0.4.13, 1.0.4.14, 1.0.4.15, 1.0.4.16, 1.0.4.17, 1.0.4.18, 1.0.4.19, 1.0.4.21, 1.0.4.22, 1.0.4.23, 1.0.4.24, 1.0.4.25, 1.0.9.64, 1.0.11.134_10.2.119, 1.1.0.112_1.0.1, 1.2.0.62_1.0.1, 10.2.64

Link to Product Website: https://www.netgear.com/

Typ oprogramowania: Router Operating System

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2023-03-10	4.3	4.1	NETGEAR Nighthawk WiFi6 Router cross site request forgery	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-1205
2023-03-10	7.6	7.5	Netgear Nighthawk WiFi6 Router SOAP Service Format String	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-27853
2023-03-10	7.1	7.0	Netgear Nighthawk WiFi6 Router File Sharing privilege escalation	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-27851
2023-03-10	6.1	6.0	Netgear Nighthawk WiFi6 Router File Sharing privilege escalation	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.06	CVE-2023-27850
2023-03-10	7.6	7.5	NETGEAR Nighthawk WiFi6 Router CGI memory corruption	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-27852
2023-01-27	4.8	4.7	Netgear Nighthawk R6220 cross site scripting	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00	CVE-2022-47052
2022-12-16	7.4	7.2	Netgear Nighthawk Telnet Service privilege escalation	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-47210
2022-12-16	7.5	7.4	Netgear Nighthawk weak authentication	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-47209
2022-12-16	8.8	8.6	Netgear Nighthawk httpsniff Service privilege escalation	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-47208
2022-09-23	5.5	5.3	Netgear Nighthawk AC1900 wl strncat memory corruption	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.04	CVE-2022-37235