CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
34.2%
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects R6100 before 1.0.1.20, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.50, and WNDR4500v3 before 1.0.0.50.
Vendor | Product | Version | CPE |
---|---|---|---|
netgear | r6100_firmware | * | cpe:2.3:o:netgear:r6100_firmware:*:*:*:*:*:*:*:* |
netgear | r6100 | - | cpe:2.3:h:netgear:r6100:-:*:*:*:*:*:*:* |
netgear | r9000_firmware | * | cpe:2.3:o:netgear:r9000_firmware:*:*:*:*:*:*:*:* |
netgear | r9000 | - | cpe:2.3:h:netgear:r9000:-:*:*:*:*:*:*:* |
netgear | wndr3700_firmware | * | cpe:2.3:o:netgear:wndr3700_firmware:*:*:*:*:*:*:*:* |
netgear | wndr3700 | v4 | cpe:2.3:h:netgear:wndr3700:v4:*:*:*:*:*:*:* |
netgear | wndr4300_firmware | * | cpe:2.3:o:netgear:wndr4300_firmware:*:*:*:*:*:*:*:* |
netgear | wndr4300 | - | cpe:2.3:h:netgear:wndr4300:-:*:*:*:*:*:*:* |
netgear | wndr4300 | v2 | cpe:2.3:h:netgear:wndr4300:v2:*:*:*:*:*:*:* |
netgear | wndr4500_firmware | * | cpe:2.3:o:netgear:wndr4500_firmware:*:*:*:*:*:*:*:* |
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
34.2%