VYPR

JNR1010

by Netgear

CVEs (3)

  • CVE-2016-11014Oct 16, 2019
    risk 0.00cvss epss 0.03

    NETGEAR JNR1010 devices before 1.0.0.32 have Incorrect Access Control because the ok value of the auth cookie is a special case.

  • CVE-2016-11015Oct 16, 2019
    risk 0.00cvss epss 0.01

    NETGEAR JNR1010 devices before 1.0.0.32 allow cgi-bin/webproc CSRF via the :InternetGatewayDevice.X_TWSZ-COM_URL_Filter.BlackList.1.URL parameter.

  • CVE-2016-11016Oct 16, 2019
    risk 0.00cvss epss 0.02

    NETGEAR JNR1010 devices before 1.0.0.32 allow webproc?getpage= XSS.