Netgear WNR614 JNR1010V2 N300 plaintext credential storage CVE-2024-36790
CVE-2024-36790 Published on June 7, 2024

Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 was discovered to store credentials in plaintext.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Cleartext Storage of Sensitive Information

The application stores sensitive information in cleartext within a resource that might be accessible to another control sphere. Because the information is stored in cleartext, attackers could potentially read it. Even if the information is encoded in a way that is not human-readable, certain techniques could determine which encoding is being used, then decode the information.

Products Associated with CVE-2024-36790

Want to know whenever a new CVE is published for Netgear Wnr614 Firmware? stack.watch will email you.

Netgear Wnr614 Firmware

Exploit Probability

EPSS

0.05%

Percentile

16.20%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Netgear WNR614 JNR1010V2 N300 plaintext credential storage CVE-2024-36790CVE-2024-36790 Published on June 7, 2024

Vulnerability Analysis

Weakness Type

Cleartext Storage of Sensitive Information

Products Associated with CVE-2024-36790

Exploit Probability

Netgear WNR614 JNR1010V2 N300 plaintext credential storage CVE-2024-36790
CVE-2024-36790 Published on June 7, 2024