CVE-2015-8288
First published: Mon Jun 20 2016(Updated: )
NETGEAR D3600 devices with firmware 1.0.0.49 and D6000 devices with firmware 1.0.0.49 and earlier use the same hardcoded private key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear D3600 Firmware | =1.0.0.49 | |
| NETGEAR D3600 | ||
| Netgear D6000 Firmware | <=1.0.0.49 | |
| Netgear D6000 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/netgear
- canonical/netgear d3600 firmware
- version/netgear d3600 firmware/1.0.0.49
- canonical/netgear d3600
- canonical/netgear d6000 firmware
- version/netgear d6000 firmware/1.0.0.49
- canonical/netgear d6000