PT-2020-10681 · NetGear · Netgear R7800+1

Published

2020-04-16

Updated

2021-07-21

CVE-2019-20706

CVSS v3.1

8.8

High

Vector

AC:L/AV:A/A:H/C:H/I:H/PR:N/S:U/UI:N

Name of the Vulnerable Software and Affected Versions NETGEAR R7800 versions 1.0.2.60 and earlier NETGEAR XR500 versions 2.3.2.32 and earlier

Description The issue allows command injection by an authenticated user.

Recommendations For NETGEAR R7800 versions 1.0.2.60 and earlier, update to version 1.0.2.60 or later. For NETGEAR XR500 versions 2.3.2.32 and earlier, update to version 2.3.2.32 or later.

Fix

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77

Related Identifiers

CVE-2019-20706

Affected Products

Netgear R7800

Netgear Xr500

PT-2020-10681 · NetGear · Netgear R7800+1

CVE-2019-20706

Weakness Enumeration

Related Identifiers

Affected Products

References · 3