medium
4.3
CWE
352
Advisory Published
Updated

CVE-2016-11055: CSRF

First published: Tue Apr 28 2020(Updated: )

Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 before 2017-01-11, D500 before 2017-01-11, DST6501 before 2017-01-11, JNR1010v1 before 2017-01-11, JWNR2000Tv3 before 2017-01-11, JWNR2010v3 before 2017-01-11, PLW1000 before 2017-01-11, PLW1010 before 2017-01-11, WNR500 before 2017-01-11, WNR612v3 before 2017-01-11, N450 before 2017-01-11, and CG3000Dv2 before 2017-01-11.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
NETGEAR CM400 firmware<2017-01-11
NETGEAR CM400 firmware
NETGEAR CM600<2017-01-11
NETGEAR CM600
NETGEAR D1500<1.0.0.20
NETGEAR D1500 firmware
NETGEAR D500<2017-01-11
NETGEAR D500 Firmware
NETGEAR DST6501<1.0.0.36
NETGEAR DST6501 firmware
NETGEAR JNR1010 firmware<2017-01-11
NETGEAR JNR1010v2=v1
NETGEAR JWNR2000T<2017-01-11
NETGEAR JWNR2000T firmware=v3
NETGEAR JWNR2010v5 firmware<2017-01-11
NETGEAR JWNR2010v5 firmware=v3
NETGEAR PLW1000 firmware<1.0.0.22
NETGEAR PLW1000 firmware
NETGEAR PLW1010<2017-01-11
NETGEAR PLW1010 firmware
NETGEAR WNR500<2017-01-11
NETGEAR WNR500 firmware
NETGEAR WNR612<2017-01-11
NETGEAR WNR612 firmware=v3
NETGEAR N450 CG3000D firmware<2017-01-11
NETGEAR N450 CG3000D firmware=v2

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2016-11055?

    CVE-2016-11055 is a vulnerability that affects certain NETGEAR devices and allows for CSRF attacks.

  • Which devices are affected by CVE-2016-11055?

    The following NETGEAR devices are affected by CVE-2016-11055: CM400, CM600, D1500, D500, DST6501, JNR1010v1, JWNR2000Tv3, JWNR2010v3, PLW1000.

  • What is the severity of CVE-2016-11055?

    CVE-2016-11055 has a severity rating of medium, with a CVSS score of 4.3.

  • How can I fix CVE-2016-11055?

    To fix CVE-2016-11055, it is recommended to update the affected NETGEAR devices to the latest firmware version.

  • Where can I find more information about CVE-2016-11055?

    You can find more information about CVE-2016-11055 on the NETGEAR Product Vulnerability Advisory page at the following link: [NETGEAR Product Vulnerability Advisory CSRF LocalFile XSS](https://kb.netgear.com/30114/NETGEAR-Product-Vulnerability-Advisory-CSRF-LocalFile-XSS)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203