cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-44261,https://securityvulnerability.io/vulnerability/CVE-2021-44261,Unauthorized Access Vulnerability in Netgear W104 by Netgear,"A vulnerability exists in the 'BRS_top.html' page of the Netgear W104, allowing remote attackers to access this page without proper authentication. This access exposes sensitive firmware version information that could potentially be exploited for further attacks. Organizations using the affected firmware version should implement security measures to safeguard against unauthorized access and protect their network.",Netgear,Wac104 Firmware,5.3,MEDIUM,0.004769999999552965,false,,false,false,false,,,false,false,,2022-03-17T12:24:14.000Z,0
CVE-2021-38532,https://securityvulnerability.io/vulnerability/CVE-2021-38532,Security Misconfiguration in NETGEAR WAC104 Devices,"NETGEAR WAC104 devices running versions prior to 1.0.4.15 are susceptible to a security misconfiguration that can expose sensitive settings. An attacker could exploit this misconfiguration to gain unauthorized access or manipulate device settings, compromising network integrity. It is crucial for users to apply the latest firmware updates to mitigate this risk and enhance their network security.",Netgear,Wac104 Firmware,6.8,MEDIUM,0.0010400000028312206,false,,false,false,false,,,false,false,,2021-08-11T00:17:00.000Z,0
CVE-2021-35973,https://securityvulnerability.io/vulnerability/CVE-2021-35973,,"NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/mini_httpd, allowing an unauthenticated attacker to invoke any action by adding the &currentsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows the attacker to change the web UI password, and eventually to enable debug mode (telnetd) and gain a shell on the device as the admin limited-user account (however, escalation to root is simple because of weak permissions on the /etc/ directory).",Netgear,Wac104 Firmware,9.8,CRITICAL,0.00610999995842576,false,,false,false,false,,,false,false,,2021-06-30T14:41:04.000Z,0
CVE-2020-35788,https://securityvulnerability.io/vulnerability/CVE-2020-35788,,NETGEAR WAC104 devices before 1.0.4.13 are affected by a buffer overflow by an authenticated user.,Netgear,Wac104 Firmware,7.6,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0