Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-11057

Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-01-06, WNR614 before 2017-01-06, WNR618 before 2017-01-06, JWNR2000v5 before 2017-01-06, WNR2020 before 2017-01-06, JWNR2010v5 before 2017-01-06, WNR1000v4 before 2017-01-06, WNR2020v2 before 2017-01-06, R6220 before 2017-01-06, and WNDR3700v5 before 2017-01-06.

Published

2020-04-28T17:15:12.353

Last Modified

2024-11-21T02:45:23.920

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: NONE
  • Availability Impact: NONE
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Primary
    CWE-287
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System netgear jnr1010_firmware < 2017-01-06 Yes
Hardware netgear jnr1010 v2 No
Operating System netgear jwnr2000_firmware < 2017-01-06 Yes
Hardware netgear jwnr2000 v5 No
Operating System netgear jwnr2010_firmware < 2017-01-06 Yes
Hardware netgear jwnr2010 v5 No
Operating System netgear r6220_firmware < 2017-01-06 Yes
Hardware netgear r6220 - No
Operating System netgear wndr3700_firmware < 2017-01-06 Yes
Hardware netgear wndr3700 v5 No
Operating System netgear wnr1000_firmware < 2017-01-06 Yes
Hardware netgear wnr1000 v4 No
Operating System netgear wnr2020_firmware < 2017-01-06 Yes
Hardware netgear wnr2020 - No
Operating System netgear wnr2020_firmware < 2017-01-06 Yes
Hardware netgear wnr2020 v2 No
Operating System netgear wnr614_firmware < 2017-01-06 Yes
Hardware netgear wnr614 - No
Operating System netgear wnr618_firmware < 2017-01-06 Yes
Hardware netgear wnr618 - No
References