CVE-2019-20756

Name of the Vulnerable Software and Affected Versions NETGEAR EX7000 versions prior to 1.0.0.64 NETGEAR EX6200 versions prior to 1.0.3.86 NETGEAR EX6150 versions prior to 1.0.0.38 NETGEAR EX6130 versions prior to 1.0.0.22 NETGEAR EX6120 versions prior to 1.0.0.40 NETGEAR EX6100 versions prior to 1.0.2.22 NETGEAR EX6000 versions prior to 1.0.0.30 NETGEAR EX3700 versions prior to 1.0.0.70 NETGEAR EX3800 versions prior to 1.0.0.70 NETGEAR R8300 versions prior to 1.0.2.94 NETGEAR R7300DST versions prior to 1.0.0.62 NETGEAR R7000P versions prior to 1.3.0.20 NETGEAR R6900P versions prior to 1.3.0.20 NETGEAR R6400 versions prior to 1.0.1.32 NETGEAR R6300v2 versions prior to 1.0.4.24 NETGEAR R8500 versions prior to 1.0.2.94 NETGEAR WNDR3400v3 versions prior to 1.0.1.18 NETGEAR WN2500RPv2 versions prior to 1.0.1.52

Description The issue is related to reflected XSS, which affects certain NETGEAR devices.

Recommendations Update EX7000 to version 1.0.0.64 or later Update EX6200 to version 1.0.3.86 or later Update EX6150 to version 1.0.0.38 or later Update EX6130 to version 1.0.0.22 or later Update EX6120 to version 1.0.0.40 or later Update EX6100 to version 1.0.2.22 or later Update EX6000 to version 1.0.0.30 or later Update EX3700 to version 1.0.0.70 or later Update EX3800 to version 1.0.0.70 or later Update R8300 to version 1.0.2.94 or later Update R7300DST to version 1.0.0.62 or later Update R7000P to version 1.3.0.20 or later Update R6900P to version 1.3.0.20 or later Update R6400 to version 1.0.1.32 or later Update R6300v2 to version 1.0.4.24 or later Update R8500 to version 1.0.2.94 or later Update WNDR3400v3 to version 1.0.1.18 or later Update WN2500RPv2 to version 1.0.1.52 or later