1. Home
  2. CVE Database
  3. CVE-2018-21226
HIGH · 8.8

CVE-2018-21226

Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48, WNR1000v4 before 1.1.0.48, WNR2020 before 1.1.0.48, and WNR2050 befor...

Vulnerability Description

Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48, WNR1000v4 before 1.1.0.48, WNR2020 before 1.1.0.48, and WNR2050 before 1.1.0.48.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
NetgearJnr1010 Firmware< 1.1.0.48
NetgearJnr1010v2
NetgearJwnr2010 Firmware< 1.1.0.48
NetgearJwnr2010v5
NetgearWnr1000 Firmware< 1.1.0.48
NetgearWnr1000v4
NetgearWnr2020 Firmware< 1.1.0.48
NetgearWnr2020-
NetgearWnr2050 Firmware< 1.1.0.48
NetgearWnr2050-

Related Weaknesses (CWE)

CWE-269

References

FAQ

What is CVE-2018-21226?

CVE-2018-21226 is a vulnerability with a CVSS score of 8.8 (HIGH). Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48, WNR1000v4 before 1.1.0.48, WNR2020 before 1.1.0.48, and WNR2050 befor...

How severe is CVE-2018-21226?

CVE-2018-21226 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-21226?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear Jnr1010 Firmware, Netgear Jnr1010, Netgear Jwnr2010 Firmware, Netgear Jwnr2010, Netgear Wnr1000 Firmware.