CVE-2016-11059
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before 2017-01-06, D500 before 2017-01-06, D1500 before 2017-01-06, D3600 before 2017-01-06, D6000 before 2017-01-06, D6100 before 2017-01-06, D6200 before 2017-01-06, D6200B before 2017-01-06, D6300B before 2017-01-06, D6300 before 2017-01-06, DGN1000v3 before 2017-01-06, DGN2200v1 before 2017-01-06, DGN2200v3 before 2017-01-06, DGN2200V4 before 2017-01-06, DGN2200Bv3 before 2017-01-06, DGN2200Bv4 before 2017-01-06, DGND3700v1 before 2017-01-06, DGND3700v2 before 2017-01-06, DGND3700Bv2 before 2017-01-06, JNR1010v1 before 2017-01-06, JNR1010v2 before 2017-01-06, JNR3300 before 2017-01-06, JR6100 before 2017-01-06, JR6150 before 2017-01-06, JWNR2000v5 before 2017-01-06, R2000 before 2017-01-06, R6050 before 2017-01-06, R6100 before 2017-01-06, R6200 before 2017-01-06, R6200v2 before 2017-01-06, R6220 before 2017-01-06, R6250 before 2017-01-06, R6300 before 2017-01-06, R6300v2 before 2017-01-06, R6700 before 2017-01-06, R7000 before 2017-01-06, R7900 before 2017-01-06, R7500 before 2017-01-06, R8000 before 2017-01-06, WGR614v10 before 2017-01-06, WNR1000v2 before 2017-01-06, WNR1000v3 before 2017-01-06, WNR1000v4 before 2017-01-06, WNR2000v3 before 2017-01-06, WNR2000v4 before 2017-01-06, WNR2000v5 before 2017-01-06, WNR2200 before 2017-01-06, WNR2500 before 2017-01-06, WNR3500Lv2 before 2017-01-06, WNDR3400v2 before 2017-01-06, WNDR3400v3 before 2017-01-06, WNDR3700v3 before 2017-01-06, WNDR3700v4 before 2017-01-06, WNDR3700v5 before 2017-01-06, WNDR4300 before 2017-01-06, WNDR4300v2 before 2017-01-06, WNDR4500v1 before 2017-01-06, WNDR4500v2 before 2017-01-06, and WNDR4500v3 before 2017-01-06.
Affected (43)
Products: Netgear: Ac1450 Firmware, C6300 Firmware, D1500 Firmware, D3600 Firmware, D500 Firmware, D6000 Firmware, D6100 Firmware, D6200 Firmware, D6200b Firmware, D6300 Firmware, D6300b Firmware, Dgn1000 Firmware, Dgn2200 Firmware, Dgn2200b Firmware, Dgnd3700 Firmware, Dgnd3700b Firmware, Jnr1010 Firmware, Jnr3300 Firmware, Jr6100 Firmware, Jr6150 Firmware, Jwnr2000 Firmware, R2000 Firmware, R6050 Firmware, R6100 Firmware, R6200 Firmware, R6220 Firmware, R6250 Firmware, R6300 Firmware, R6700 Firmware, R7000 Firmware, R7500 Firmware, R7900 Firmware, R8000 Firmware, Wgr614 Firmware, Wndr3400 Firmware, Wndr3700 Firmware, Wndr4300 Firmware, Wndr4500 Firmware, Wnr1000 Firmware, Wnr2000 Firmware, Wnr2200 Firmware, Wnr2500 Firmware, Wnr3500l Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ac1450 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear C6300 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D1500 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D3600 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D500 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D6000 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D6100 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D6200 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D6200b | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D6300 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear D6300b | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Dgn1000 | Version v3 |
Configuration M
| Running on/with | Platform Versions |
|---|---|
Netgear Dgn2200 | Version v1 |
Configuration N
| Running on/with | Platform Versions |
|---|---|
Netgear Dgn2200 | Version v3 |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Dgn2200 | Version v4 |
Configuration P
| Running on/with | Platform Versions |
|---|---|
Netgear Dgn2200b | Version v3 |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Dgn2200b | Version v4 |
Configuration R
| Running on/with | Platform Versions |
|---|---|
Netgear Dgnd3700 | Version v1 |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Dgnd3700 | Version v2 |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Dgnd3700b | Version v2 |
Configuration U
| Running on/with | Platform Versions |
|---|---|
Netgear Jnr1010 | Version v1 |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Jnr1010 | Version v2 |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Jnr3300 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Jr6100 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Jr6150 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Jwnr2000 | Version v5 |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R2000 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6050 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6100 | All versions |
Configuration D
| Running on/with | Platform Versions |
|---|---|
Netgear R6200 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6200 | Version v2 |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6220 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6250 | All versions |
Configuration H
| Running on/with | Platform Versions |
|---|---|
Netgear R6300 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6300 | Version v2 |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6700 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R7000 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R7500 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R7900 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear R8000 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wgr614 | Version v10 |
Configuration P
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr3400 | Version v2 |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr3400 | Version v3 |
Configuration R
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr3700 | Version v3 |
Configuration S
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr3700 | Version v4 |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr3700 | Version v5 |
Configuration U
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr4300 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr4300 | Version v2 |
Configuration W
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr4500 | Version v1 |
Configuration X
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr4500 | Version v2 |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wndr4500 | Version v3 |
Configuration Z
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr1000 | Version v2 |
Configuration A
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr1000 | Version v3 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr1000 | Version v4 |
Configuration C
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr2000 | Version v3 |
Configuration D
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr2000 | Version v4 |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr2000 | Version v5 |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr2200 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr2500 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2017-01-06 |
| Running on/with | Platform Versions |
|---|---|
Netgear Wnr3500l | Version v2 |
References (2)
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.