TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2024-28339

MEDIUM
5.4

Beschreibung

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required.

CVE Details

CVSS v3.1 Bewertung5.4
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
AngriffsvektorADJACENT_NETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht3/12/2024
Zuletzt geandert5/27/2025
Quellenvd
Honeypot-Sichtungen0

Betroffene Produkte

netgear:cbk40netgear:cbk40_firmwarenetgear:cbk43netgear:cbk43_firmwarenetgear:cbr40netgear:cbr40_firmware

Schwachen (CWE)

CWE-200

Referenzen

https://github.com/funny-mud-peee/IoT-vuls/blob/main/Netgear%20CBR40%5CCBK40%5CCBK43/Info%20Leak%20in%20Netgear-CBR40%E3%80%81CBK40%E3%80%81CBK43%20Router%EF%BC%88debuginfo.htm%EF%BC%89.md(cve@mitre.org)
https://www.netgear.com/about/security/(cve@mitre.org)
https://github.com/funny-mud-peee/IoT-vuls/blob/main/Netgear%20CBR40%5CCBK40%5CCBK43/Info%20Leak%20in%20Netgear-CBR40%E3%80%81CBK40%E3%80%81CBK43%20Router%EF%BC%88debuginfo.htm%EF%BC%89.md(af854a3a-2127-422b-91ae-364da2661108)
https://www.netgear.com/about/security/(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.