QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-21209

Back to search

CVE-2018-21209

Published: Apr 28, 2020

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

4.8

MEDIUM

Description

Certain NETGEAR devices are affected by reflected XSS. This affects JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.46, PR2000 before 1.0.0.20, R6050 before 1.0.1.10, R6220 before 1.1.0.60, WNDR3700v5 before 1.1.0.50, WNR1000v4 before 1.1.0.46, WNR2020 before 1.1.0.46, and WNR2050 before 1.1.0.46.

VendorProductVersions

n/a

n/a

affected
n/a

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AC:L/AV:A/A:N/C:L/I:L/PR:H/S:C/UI:N

Attack Complexity

Low

Attack Vector

Adjacent

Availability

None

Confidentiality

Low

Integrity

Low

Privileges Required

High

Scope

Changed

User Interaction

None

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now