2024年7月16日星期二

Netgear Products Multiple Vulnerabilities

Release Date: 15 Jul 2024

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

Multiple vulnerabilities were identified in Netgear Products. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting and security restriction bypass on the targeted system.

Impact

Cross-Site Scripting
Security Restriction Bypass

System / Technologies affected

NETGEAR XR1000 version prior to 1.0.0.72
NETGEAR CAX30 version prior to 2.2.2.2

Solutions

Before installation of the software, please visit the vendor's web-site for more details.

Apply fixes issued by the vendor:
- https://kb.netgear.com/000066264/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-PSV-2023-0122
- https://kb.netgear.com/000066265/Security-Advisory-for-Authentication-Bypass-on-Some-Cable-Modem-Routers-PSV-2023-0138

Vulnerability Identifier

Note: No CVE information is available for this vulnerability

Source

Netgear Security Advisory

2024年7月16日星期二

Netgear Products Multiple Vulnerabilities

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Source

Related Link

沒有留言:

發佈留言

MongoDB 資料洩露漏洞

舉報濫用