PT-2023-13606 · NetGear · Netgear Orbi Router Rbr750
Dave Mcdaniel
·
Published
2023-03-21
·
Updated
2023-03-28
·
CVE-2022-38458
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Netgear Orbi Router RBR750 version 4.6.8.5
Description
A cleartext transmission issue exists in the Remote Management functionality. This can be exploited by a specially-crafted man-in-the-middle attack, potentially leading to the disclosure of sensitive information.
Recommendations
For Netgear Orbi Router RBR750 version 4.6.8.5, consider disabling the Remote Management functionality until a patch is available to prevent exploitation.
Exploit
Fix
Cleartext Transmission of Sensitive Information
Missing Encryption of Sensitive Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Netgear Orbi Router Rbr750