CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
60.4%
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. (Affected Chipsets MT7603E, MT7610, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 2.0.2; Out-of-bounds write).
Vendor | Product | Version | CPE |
---|---|---|---|
mediatek | mt7603e_firmware | 2.0.2 | cpe:2.3:o:mediatek:mt7603e_firmware:2.0.2:*:*:*:*:*:*:* |
mediatek | mt7603e | - | cpe:2.3:h:mediatek:mt7603e:-:*:*:*:*:*:*:* |
mediatek | mt7610_firmware | 2.0.2 | cpe:2.3:o:mediatek:mt7610_firmware:2.0.2:*:*:*:*:*:*:* |
mediatek | mt7610 | - | cpe:2.3:h:mediatek:mt7610:-:*:*:*:*:*:*:* |
mediatek | mt7613_firmware | 2.0.2 | cpe:2.3:o:mediatek:mt7613_firmware:2.0.2:*:*:*:*:*:*:* |
mediatek | mt7613 | - | cpe:2.3:h:mediatek:mt7613:-:*:*:*:*:*:*:* |
mediatek | mt7615_firmware | 2.0.2 | cpe:2.3:o:mediatek:mt7615_firmware:2.0.2:*:*:*:*:*:*:* |
mediatek | mt7615 | - | cpe:2.3:h:mediatek:mt7615:-:*:*:*:*:*:*:* |
mediatek | mt7620_firmware | 2.0.2 | cpe:2.3:o:mediatek:mt7620_firmware:2.0.2:*:*:*:*:*:*:* |
mediatek | mt7620 | - | cpe:2.3:h:mediatek:mt7620:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
60.4%