#VU73701 Information disclosure in NETGEAR products
Published: March 15, 2023
Vulnerability identifier: #VU73701
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: N/A
CWE-ID: CWE-200
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
D7000
JNR1010v2
JWNR2010v5
PR2000 fixed
R6020
R6050
JR6150
R6120
R6220
R6230
R6700v3
WN3000RP
WN3000RPv2
WN3000RPv3
WN3100RPv2
WNR1000v4
WNR2020
WNR2050
D7800
R6400v2
R7000
R7000P
R7100LG
R7500v2
R7800
WNR2000v5
D7000
JNR1010v2
JWNR2010v5
PR2000 fixed
R6020
R6050
JR6150
R6120
R6220
R6230
R6700v3
WN3000RP
WN3000RPv2
WN3000RPv3
WN3100RPv2
WNR1000v4
WNR2020
WNR2050
D7800
R6400v2
R7000
R7000P
R7100LG
R7500v2
R7800
WNR2000v5
Software vendor:
NETGEAR
NETGEAR
Description
The vulnerability allows a local attacker to gain access to potentially sensitive information.
The vulnerability exists due to a security misconfiguration issue. A local attacker can gain unauthorized access to sensitive information on the system.
Remediation
Install updates from vendor's website.