29 matches found
EUVD-2020-23443
Malware in sbrugna...
EUVD-2021-22606
Malware in sbrugna...
EUVD-2021-24982
Malware in sbrugna...
CVE-2021-38532
NETGEAR WAC104 devices before 1.0.4.15 are affected by incorrect configuration of security settings...
CVE-2021-35973
NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/minihttpd, allowing an unauthenticated attacker to invoke any action by adding the ¤tsetting.htm; substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows t...
CVE-2020-35788
NETGEAR WAC104 devices before 1.0.4.13 are affected by a buffer overflow by an authenticated user...
CVE-2021-44261
A vulnerability is in the 'BRStop.html' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes firmware version information for the device...
CVE-2021-44261
A vulnerability is in the 'BRStop.html' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes firmware version information for the device...
CVE-2021-44261
CVE-2021-44261 affects Netgear W104 (WAC104-V1.0.4.13). The issue is in the BRS_top.html page where a remote attacker can access the page without authentication, exposing device firmware version information. The NVD metrics indicate network access, no authentication, and partial confidentiality i...
CVE-2021-44262
A vulnerability is in the 'MNUtop.htm' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes some key information for the device...
CVE-2021-38532
NETGEAR WAC104 devices before 1.0.4.15 are affected by incorrect configuration of security settings...
CVE-2021-38532
NETGEAR WAC104 devices before 1.0.4.15 are affected by incorrect configuration of security settings...
Design/Logic Flaw
NETGEAR WAC104 devices before 1.0.4.15 are affected by incorrect configuration of security settings...
CVE-2021-38532
NETGEAR WAC104 devices before 1.0.4.15 are affected by incorrect configuration of security settings...
CVE-2021-38532
The CVE-2021-38532 entry concerns NETGEAR WAC104 devices with firmware before 1.0.4.15 that are affected by incorrect configuration of security settings. Affected product: NETGEAR WAC104. Root cause: incorrect security setting configuration (no further technical specifics provided). Impact detail...
NETGEAR WAC104身份验证绕过漏洞(CVE-2021-35973)
Summary: Affected Model: NETGEAR WAC104 Dual Band 802.11ac Wireless Access Point Firmware Version: V1.0.4.13 from 2020-09-14 NETGEAR WAC104 Access Point has multiple vulnerabilities which - chained together - allow an attacker in LAN to both change device admin's password, and gain root shell on...
CVE-2021-35973
NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/minihttpd, allowing an unauthenticated attacker to invoke any action by adding the ¤tsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows th...
CVE-2021-35973
NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/minihttpd, allowing an unauthenticated attacker to invoke any action by adding the ¤tsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows th...
Authentication flaw
NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/minihttpd, allowing an unauthenticated attacker to invoke any action by adding the ¤tsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows th...
CVE-2021-35973
NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/minihttpd, allowing an unauthenticated attacker to invoke any action by adding the ¤tsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows th...