VYPR

GC108PP

by Netgear

CVEs (3)

  • CVE-2021-45557Dec 26, 2021
    risk 0.00cvss epss 0.01

    Certain NETGEAR devices are affected by command injection by an authenticated user. This affects GC108P before 1.0.8.2, GC108PP before 1.0.8.2, GS108Tv3 before 7.0.7.2, GS110TPv3 before 7.0.7.2, GS110TPP before 7.0.7.2, GS110TUP before 1.0.5.3, GS710TUP before 1.0.5.3, GS308T…

  • CVE-2021-41314Sep 16, 2021
    risk 0.00cvss epss 0.14

    Certain NETGEAR smart switches are affected by a \n injection in the web UI's password field, which - due to several faulty aspects of the authentication scheme - allows the attacker to create (or overwrite) a file with specific content (e.g., the "2" string). This leads to…

  • CVE-2021-40867Sep 13, 2021
    risk 0.00cvss epss 0.01

    Certain NETGEAR smart switches are affected by an authentication hijacking race-condition vulnerability by an unauthenticated attacker who uses the same source IP address as an admin in the process of logging in (e.g., behind the same NAT device, or already in possession of a…