Netgear Products Multiple Vulnerabilities
Release Date:
17 Mar 2021
4977
Views
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities were identified in Netgear Products, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure, data manipulation, cross-site scripting and security restriction bypass on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Data Manipulation
System / Technologies affected
- JGS516PE running firmware versions prior to 2.6.0.48
- GS116Ev2 running firmware versions prior to 2.6.0.48
- JGS524PE running firmware versions prior to 2.6.0.48
- JGS524Ev2 running firmware versions prior to 2.6.0.48
Solutions
Before installation of the software, please visit the vendor's web-site for more details.
- Apply fixes issued by the vendor:
https://kb.netgear.com/000062993/Security-Advisory-for-Multiple-Vulnerabilities-on-Some-ProSAFE-Plus-Switches
Vulnerability Identifier
- CVE-2020-26919
- CVE-2020-35220
- CVE-2020-35221
- CVE-2020-35222
- CVE-2020-35223
- CVE-2020-35224
- CVE-2020-35225
- CVE-2020-35226
- CVE-2020-35227
- CVE-2020-35228
- CVE-2020-35229
- CVE-2020-35230
- CVE-2020-35232
- CVE-2020-35233
Source
Related Link
Related Tags
Share with