6.2

CVE-2017-18790

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R6700 before 1.0.1.26, R7000 before 1.0.9.10, R7100LG before 1.0.0.32, R7900 before 1.0.1.18, R8000 before 1.0.3.54, and R8500 before 1.0.2.100.

Data is provided by the National Vulnerability Database (NVD)
NetgearR6700 Firmware Version < 1.0.1.26
   NetgearR6700 Version-
NetgearR7000 Firmware Version < 1.0.9.10
   NetgearR7000 Version-
NetgearR7100lg Firmware Version < 1.0.0.32
   NetgearR7100lg Version-
NetgearR7900 Firmware Version < 1.0.1.18
   NetgearR7900 Version-
NetgearR8000 Firmware Version < 1.0.3.54
   NetgearR8000 Version-
NetgearR8500 Firmware Version < 1.0.2.100
   NetgearR8500 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.06% 0.166
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.2 2.5 3.6
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
cve@mitre.org 6.2 2.5 3.6
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.