// For flags

CVE-2021-44261

 

Severity Score

5.3
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A vulnerability is in the 'BRS_top.html' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. When processed, it exposes firmware version information for the device.

Se presenta una vulnerabilidad en la página "BRS_top.html" del Netgear W104, versión WAC104-V1.0.4.13, que puede permitir a un atacante remoto acceder a esta página sin ninguna autenticación. Cuando es procesado, expone la información de la versión del firmware del dispositivo

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2021-11-29 CVE Reserved
  • 2022-03-17 CVE Published
  • 2024-08-04 CVE Updated
  • 2024-08-04 First Exploit
  • 2024-10-21 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-306: Missing Authentication for Critical Function
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Netgear
Search vendor "Netgear"
Wac104 Firmware
Search vendor "Netgear" for product "Wac104 Firmware"
<= 1.0.4.13
Search vendor "Netgear" for product "Wac104 Firmware" and version " <= 1.0.4.13"
-
Affected
in Netgear
Search vendor "Netgear"
Wac104
Search vendor "Netgear" for product "Wac104"
--
Safe
Netgear
Search vendor "Netgear"
R7450 Firmware
Search vendor "Netgear" for product "R7450 Firmware"
*-
Affected
in Netgear
Search vendor "Netgear"
R7450
Search vendor "Netgear" for product "R7450"
--
Safe
Netgear
Search vendor "Netgear"
R6900 Firmware
Search vendor "Netgear" for product "R6900 Firmware"
*-
Affected
in Netgear
Search vendor "Netgear"
R6900
Search vendor "Netgear" for product "R6900"
v2
Search vendor "Netgear" for product "R6900" and version "v2"
-
Safe
Netgear
Search vendor "Netgear"
R7800 Firmware
Search vendor "Netgear" for product "R7800 Firmware"
*-
Affected
in Netgear
Search vendor "Netgear"
R7800
Search vendor "Netgear" for product "R7800"
--
Safe
Netgear
Search vendor "Netgear"
R6220 Firmware
Search vendor "Netgear" for product "R6220 Firmware"
<= 1.1.0.34_1.0.1
Search vendor "Netgear" for product "R6220 Firmware" and version " <= 1.1.0.34_1.0.1"
-
Affected
in Netgear
Search vendor "Netgear"
R6220
Search vendor "Netgear" for product "R6220"
--
Safe