Exposure of Sensitive Information to an Unauthorized Actor
Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This affects D7800 before 18.104.22.168, R6100 before 22.214.171.124, R7500 before 126.96.36.199, R7500v2 before 188.8.131.52, R7800 before 184.108.40.206, R9000 before 220.127.116.11, WNDR4300v2 before 18.104.22.168, and WNDR4500v3 before 22.214.171.124.
CWE-200 - Information Exposure
An information exposure vulnerability is categorized as an information flow (IF) weakness, which can potentially allow unauthorized access to otherwise classified information in the application, such as confidential personal information (demographics, financials, health records, etc.), business secrets, and the application's internal environment.