CVE-2016-11055
Severity Score
4.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 before 2017-01-11, D500 before 2017-01-11, DST6501 before 2017-01-11, JNR1010v1 before 2017-01-11, JWNR2000Tv3 before 2017-01-11, JWNR2010v3 before 2017-01-11, PLW1000 before 2017-01-11, PLW1010 before 2017-01-11, WNR500 before 2017-01-11, WNR612v3 before 2017-01-11, N450 before 2017-01-11, and CG3000Dv2 before 2017-01-11.
Determinados dispositivos de NETGEAR están afectados por una vulnerabilidad de tipo CSRF. Esto afecta a CM400 antes del 11-01-2017, CM600 antes del 11-01-2017, D1500 antes del 11-01-2017, D500 antes del 11-01-2017, DST6501 antes del 11-01-2017, JNR1010v1 antes del 11-01-2017, JWNR2000Tv3 antes del 11-01-2017, JWNR2010v3 antes del 11-01-2017, PLW1000 antes del 11-01-2017, PLW1010 antes del 11-01-2017, WNR500 antes del 11-01-2017, WNR612v3 antes del 11-01-2017, N450 antes del 11-01-2017, y CG3000Dv2 antes del 11-01-2017.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-04-27 CVE Reserved
- 2020-04-28 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-352: Cross-Site Request Forgery (CSRF)
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://kb.netgear.com/30114/NETGEAR-Product-Vulnerability-Advisory-CSRF-LocalFile-XSS | 2020-05-05 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Netgear Search vendor "Netgear" | Cm400 Firmware Search vendor "Netgear" for product "Cm400 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Cm400 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Cm400 Search vendor "Netgear" for product "Cm400" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Cm600 Firmware Search vendor "Netgear" for product "Cm600 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Cm600 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Cm600 Search vendor "Netgear" for product "Cm600" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | D1500 Firmware Search vendor "Netgear" for product "D1500 Firmware" | < 1.0.0.20 Search vendor "Netgear" for product "D1500 Firmware" and version " < 1.0.0.20" | - |
Affected
| in | Netgear Search vendor "Netgear" | D1500 Search vendor "Netgear" for product "D1500" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | D500 Firmware Search vendor "Netgear" for product "D500 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "D500 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | D500 Search vendor "Netgear" for product "D500" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Dst6501 Firmware Search vendor "Netgear" for product "Dst6501 Firmware" | < 1.0.0.36 Search vendor "Netgear" for product "Dst6501 Firmware" and version " < 1.0.0.36" | - |
Affected
| in | Netgear Search vendor "Netgear" | Dst6501 Search vendor "Netgear" for product "Dst6501" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Jnr1010 Firmware Search vendor "Netgear" for product "Jnr1010 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Jnr1010 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Jnr1010 Search vendor "Netgear" for product "Jnr1010" | v1 Search vendor "Netgear" for product "Jnr1010" and version "v1" | - |
Safe
|
| Netgear Search vendor "Netgear" | Jwnr2000t Firmware Search vendor "Netgear" for product "Jwnr2000t Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Jwnr2000t Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Jwnr2000t Search vendor "Netgear" for product "Jwnr2000t" | v3 Search vendor "Netgear" for product "Jwnr2000t" and version "v3" | - |
Safe
|
| Netgear Search vendor "Netgear" | Jwnr2010 Firmware Search vendor "Netgear" for product "Jwnr2010 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Jwnr2010 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Jwnr2010 Search vendor "Netgear" for product "Jwnr2010" | v3 Search vendor "Netgear" for product "Jwnr2010" and version "v3" | - |
Safe
|
| Netgear Search vendor "Netgear" | Plw1000 Firmware Search vendor "Netgear" for product "Plw1000 Firmware" | < 1.0.0.22 Search vendor "Netgear" for product "Plw1000 Firmware" and version " < 1.0.0.22" | - |
Affected
| in | Netgear Search vendor "Netgear" | Plw1000 Search vendor "Netgear" for product "Plw1000" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Plw1010 Firmware Search vendor "Netgear" for product "Plw1010 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Plw1010 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Plw1010 Search vendor "Netgear" for product "Plw1010" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Wnr500 Firmware Search vendor "Netgear" for product "Wnr500 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Wnr500 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Wnr500 Search vendor "Netgear" for product "Wnr500" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Wnr612 Firmware Search vendor "Netgear" for product "Wnr612 Firmware" | < 2017-01-11 Search vendor "Netgear" for product "Wnr612 Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | Wnr612 Search vendor "Netgear" for product "Wnr612" | v3 Search vendor "Netgear" for product "Wnr612" and version "v3" | - |
Safe
|
| Netgear Search vendor "Netgear" | N450 Cg3000d Firmware Search vendor "Netgear" for product "N450 Cg3000d Firmware" | < 2017-01-11 Search vendor "Netgear" for product "N450 Cg3000d Firmware" and version " < 2017-01-11" | - |
Affected
| in | Netgear Search vendor "Netgear" | N450 Cg3000d Search vendor "Netgear" for product "N450 Cg3000d" | v2 Search vendor "Netgear" for product "N450 Cg3000d" and version "v2" | - |
Safe
|