CVE-2024-28339

Severity CVSS v4.0:
Pending analysis
Type:
CWE-200 Information Leak / Disclosure
Publication date:
12/03/2024
Last modified:
27/05/2025

Description

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:netgear:cbk40_firmware:2.5.0.28:*:*:*:*:*:*:*
cpe:2.3:h:netgear:cbk40:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:cbk43_firmware:2.5.0.28:*:*:*:*:*:*:*
cpe:2.3:h:netgear:cbk43:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:cbr40_firmware:2.5.0.28:*:*:*:*:*:*:*
cpe:2.3:h:netgear:cbr40:-:*:*:*:*:*:*:*