CVE-2024-36788

1976-01-0100:00:00

mitre

github.com

AI Score

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies. This allows attackers to possibly intercept and access sensitive communications between the router and connected devices.

References

redfoxsec.com/blog/security-advisory-multiple-vulnerabilities-in-netgear-wnr614-router/