6.2
CVE-2017-18789
- EPSS 0.05%
- Veröffentlicht 22.04.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 03:20:55
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R6250 before V1.0.4.8, R6400 before V1.0.1.22, R6400v2 before V1.0.2.32, R7100LG before V1.0.0.32, R7300 before V1.0.0.52, R8300 before V1.0.2.94, R8500 before V1.0.2.100, D6220 before V1.0.0.28, D6400 before V1.0.0.60, and D8500 before V1.0.3.29.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Netgear ≫ R6250 Firmware Version < 1.0.4.8
Netgear ≫ R6400 Firmware Version < 1.0.1.22
Netgear ≫ R6400 Firmware Version < 1.0.2.32
Netgear ≫ R7100lg Firmware Version < 1.0.0.32
Netgear ≫ R7300 Firmware Version < 1.0.0.52
Netgear ≫ R8300 Firmware Version < 1.0.2.94
Netgear ≫ R8500 Firmware Version < 1.0.2.100
Netgear ≫ D6220 Firmware Version < 1.0.0.28
Netgear ≫ D6400 Firmware Version < 1.0.0.60
Netgear ≫ D8500 Firmware Version < 1.0.3.29
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.05% | 0.117 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
| cve@mitre.org | 6.2 | 2.5 | 3.6 |
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.