CVE-2024-28340 Information

Description

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28 Netgear CBK40 2.5.0.28 and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required.

Reference

https://www.netgear.com/about/security/ https://github.com/funny-mud-peee/IoT-vuls/blob/main/Netgear%20CBR40%5CCBK40%5CCBK43/Info%20Leak%20in%20Netgear-CBR40%E3%80%81CBK40%E3%80%81CBK43%20Router%EF%BC%88currentsetting.htm%EF%BC%89.md