CVE-2015-8263Netgear Wnr1000v3 Firmware vulnerability

3 documents3 sources
Severity
8.6HIGHNVD
EPSS
0.6%
top 30.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netgear Wnr1000v3 Firmware
Timeline
PublishedDec 27
Latest updateMay 17

Description

NETGEAR WNR1000v3 devices with firmware 1.0.2.68 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:NExploitability: 3.9 | Impact: 4.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-mgr3-48vv-j39x: NETGEAR WNR1000v3 devices with firmware 12022-05-17
CVEList
CVE-2015-8263: NETGEAR WNR1000v3 devices with firmware 12015-12-27
CVE-2015-8263 — Netgear vulnerability | cvebase