PT-2020-8764 · NetGear · Wnap320+10
Cyriac
·
Published
2020-04-22
·
Updated
2020-04-24
·
CVE-2018-21120
CVSS v3.1
8.0
High
| Vector | AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
WAC120 versions prior to 2.1.7
WAC505 versions prior to 5.0.5.4
WAC510 versions prior to 5.0.5.4
WNAP320 versions prior to 3.7.11.4
WNAP210v2 versions prior to 3.7.11.4
WNDAP350 versions prior to 3.7.11.4
WNDAP360 versions prior to 3.7.11.4
WNDAP660 versions prior to 3.7.11.4
WNDAP620 versions prior to 2.1.7
WND930 versions prior to 2.1.5
WN604 versions prior to 3.3.10
Description
Certain NETGEAR devices are affected by a CSRF issue.
Recommendations
For WAC120 version prior to 2.1.7, update to version 2.1.7 or later.
For WAC505 version prior to 5.0.5.4, update to version 5.0.5.4 or later.
For WAC510 version prior to 5.0.5.4, update to version 5.0.5.4 or later.
For WNAP320 version prior to 3.7.11.4, update to version 3.7.11.4 or later.
For WNAP210v2 version prior to 3.7.11.4, update to version 3.7.11.4 or later.
For WNDAP350 version prior to 3.7.11.4, update to version 3.7.11.4 or later.
For WNDAP360 version prior to 3.7.11.4, update to version 3.7.11.4 or later.
For WNDAP660 version prior to 3.7.11.4, update to version 3.7.11.4 or later.
For WNDAP620 version prior to 2.1.7, update to version 2.1.7 or later.
For WND930 version prior to 2.1.5, update to version 2.1.5 or later.
For WN604 version prior to 3.3.10, update to version 3.3.10 or later.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wac120
Wac505
Wac510
Wn604
Wnap210V2
Wnap320
Wnd930
Wndap350
Wndap360
Wndap620
Wndap660