Design/Logic Flaw

2021-12-2601:15:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.5%

JSON

Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RAX35 before 1.0.4.102, RAX38 before 1.0.4.102, and RAX40 before 1.0.4.102.

CPENameOperatorVersion
rax35_firmwarelt1.0.4.102
rax38_firmwarelt1.0.4.102
rax40_firmwarelt1.0.4.102

Name	Operator	Version
rax35_firmware	lt	1.0.4.102
rax38_firmware	lt	1.0.4.102
rax40_firmware	lt	1.0.4.102

References

kb.netgear.com/000064453/Security-Advisory-for-Admin-Credential-Disclosure-on-Some-Routers-PSV-2019-0293