PT-2020-8765 · NetGear · Netgear Gs810Emx+2

Published

2020-04-22

Updated

2020-04-24

CVE-2018-21121

CVSS v3.1

8.8

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NETGEAR GS810EMX versions 1.0.0.0 through 1.0.0.4 NETGEAR XS512EM versions 1.0.0.0 through 1.0.0.5 NETGEAR XS724EM versions 1.0.0.0 through 1.0.0.5

Description The issue is related to authentication bypass in certain NETGEAR devices.

Recommendations For NETGEAR GS810EMX versions 1.0.0.0 through 1.0.0.4, update to version 1.0.0.5 or later. For NETGEAR XS512EM versions 1.0.0.0 through 1.0.0.5, update to version 1.0.0.6 or later. For NETGEAR XS724EM versions 1.0.0.0 through 1.0.0.5, update to version 1.0.0.6 or later.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2018-21121

Affected Products

Netgear Gs810Emx

Netgear Xs512Em

Netgear Xs724Em

PT-2020-8765 · NetGear · Netgear Gs810Emx+2

CVE-2018-21121

Weakness Enumeration

Related Identifiers

Affected Products

References · 4