CVE-2016-11057

Published Apr 28, 2020

Last updated 5 years ago

CVSS high 7.5

Overview

Description: Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-01-06, WNR614 before 2017-01-06, WNR618 before 2017-01-06, JWNR2000v5 before 2017-01-06, WNR2020 before 2017-01-06, JWNR2010v5 before 2017-01-06, WNR1000v4 before 2017-01-06, WNR2020v2 before 2017-01-06, R6220 before 2017-01-06, and WNDR3700v5 before 2017-01-06.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-287

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:jnr1010_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F19C07A-65D3-4FFF-9D11-58C2B4D7A531",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:jnr1010:v2:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CCE79B3F-8667-43C9-962D-EE089428F144"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:jwnr2000_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86B79A3A-8A63-4BD5-9016-8C98AEF737A8",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:jwnr2000:v5:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3D78543E-37A7-4829-9165-D0CF52DD4867"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:jwnr2010_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B1059F8-32A9-4E9A-BBFF-548CFDCF676A",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:jwnr2010:v5:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7399E5E9-40D8-4ECD-8B7B-C96A27E10282"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6220_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "717CDDCB-3DEB-4949-AAC8-D939D01A0858",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6220:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B131B5C8-CB7F-433B-BA32-F05CE0E92A66"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:wndr3700_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17D010FA-275D-4D34-8DB8-49BEA70AF6DA",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:wndr3700:v5:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EC5B6CB8-D439-42D5-ACAE-6246874EA5F0"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:wnr1000_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17B45AE0-0FBF-478B-966F-B2B28C971C3C",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:wnr1000:v4:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C8218868-273B-46DB-B636-D3F9A3768069"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:wnr2020_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "894CEEC8-F75E-45EB-B1C8-87BB465980BA",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:wnr2020:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C2189628-03E7-445A-9EF2-656A85539115"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:wnr2020_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "894CEEC8-F75E-45EB-B1C8-87BB465980BA",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:wnr2020:v2:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3EA06558-20FF-4E1D-BA34-9645421F8CC1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:wnr614_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D327648B-8616-4965-9471-243501A8E4E9",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:wnr614:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EC8A668E-4A30-4364-AF7A-F3C814BBAACA"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:wnr618_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FB949B1-75B6-4262-919F-119B2D8ABF8C",
            "versionEndExcluding": "2017-01-06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:wnr618:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7BAA7BF1-2DFE-4ADA-B3A7-F33EEAAC5962"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References