CVE-2024-28340

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required...

The vulnerability of the debuginfo.htm component in Netgear’s integrated router software—Netgear CBR40, Netgear CBK40, and Netgear CBK43—allows attackers to disclose sensitive information that should be protected.

The vulnerability of the debuginfo.htm component in Netgear’s integrated router software, such as Netgear CBR40, Netgear CBK40, and Netgear CBK43, is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected ...

CVE-2024-28340

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required...

CVE-2024-28339

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required...

NETGEAR CBR40 安全漏洞

The NETGEAR CBR40/CBK40/CBM43 are all routers from NETGEAR. A hardware device that connects two or more networks and acts as a gateway between networks. An information disclosure vulnerability exists in the NETGEAR CBR40/CBK40/CBM43, which stems from insufficient protection of sensitive informati...

CVE-2024-28340

CVE-2024-28340 affects NETGEAR CBR40/CBK40/CBK43 routers with firmware 2.5.0.28. The currentsetting.htm component exposes an information‑leak vulnerability that allows unauthenticated attackers to obtain sensitive data via the web interface due to insufficient access control. The CVSS v3.1 base s...

PT-2024-2619 · NetGear · Netgear Cbr40 +1

Name of the Vulnerable Software and Affected Versions: Netgear CBR40 version 2.5.0.28 Netgear CBK40 version 2.5.0.28 Netgear CBK43 version 2.5.0.28 Description: The issue is related to an information leak in the debuginfo.htm component, which allows attackers to obtain sensitive information witho...

NETGEAR CBR40 安全漏洞

The NETGEAR CBR40/CBK40/CBM43 are all routers from NETGEAR. A hardware device that connects two or more networks and acts as a gateway between networks. An information disclosure vulnerability exists in the NETGEAR CBR40/CBK40/CBM43, which stems from insufficient protection of sensitive informati...

CVE-2024-28339

CVE-2024-28339 describes an information leak in the debuginfo.htm component of Netgear CBR40, CBK40, and CBK43 routers (version 2.5.0.28). The issue allows attackers to obtain sensitive information without authentication, due to improper access control in the debuginfo.htm page. Publicly availabl...

PT-2024-2618 · NetGear · Netgear Cbr40 +1

Name of the Vulnerable Software and Affected Versions: Netgear CBR40 version 2.5.0.28 Netgear CBK40 version 2.5.0.28 Netgear CBK43 version 2.5.0.28 Description: The issue is related to an information leak in the currentsetting.htm component, which allows attackers to obtain sensitive information...

CVE-2020-35800

CVE-2020-35800 affects a wide range of NETGEAR devices (e.g., AC2100/AC2400/AC2600, CBK40/CBR40, D6000/D6220/D6400/D7000v2/D7800/D8500/DC112A, EX-series, R-series, etc.). The root issue is an incorrect security settings configuration across these models, leading to a security misconfiguration. Th...

Certain NETGEAR devices security breach

Netgear NETGEAR is a router from the American company Netgear. It is a hardware device that connects two or more networks and acts as a gateway between networks. A security vulnerability exists in certain NETGEAR devices and the following products and versions are affected: AC2100 before 1.2.0.72...