CVE-2021-44262

A vulnerability is in the 'MNU_top.htm' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes some key information for the device.

Published: Mar 17, 2022
Updated: Apr 14, 2023
CVE: CVE-2021-44262
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-306

Affected Software
References

Software	From	Fixed in
netgear / mbr1517_firmware	-	-
netgear / wnce3001_firmware	-	-
netgear / wac104_firmware	-	1.0.4.13.x

https://github.com/zer0yu/CVE_Request/blob/master/netgear/Netgear_W104_unauthorized_access_vulnerability_second.md
https://www.netgear.com/about/security/

Vulnerability Database

289,871

CVE-2021-44262