PT-2020-8853 · NetGear · Wnr2020+9
Pacenoge
·
Published
2020-04-28
·
Updated
2020-05-04
·
CVE-2018-21209
CVSS v3.1
4.8
Medium
| Vector | AC:L/AV:A/A:N/C:L/I:L/PR:H/S:C/UI:N |
Name of the Vulnerable Software and Affected Versions
JNR1010v2 versions prior to 1.1.0.46
JR6150 versions prior to 1.0.1.10
JWNR2010v5 versions prior to 1.1.0.46
PR2000 versions prior to 1.0.0.20
R6050 versions prior to 1.0.1.10
R6220 versions prior to 1.1.0.60
WNDR3700v5 versions prior to 1.1.0.50
WNR1000v4 versions prior to 1.1.0.46
WNR2020 versions prior to 1.1.0.46
WNR2050 versions prior to 1.1.0.46
Description
Certain NETGEAR devices are affected by reflected XSS.
Recommendations
For JNR1010v2 versions prior to 1.1.0.46, update to version 1.1.0.46 or later.
For JR6150 versions prior to 1.0.1.10, update to version 1.0.1.10 or later.
For JWNR2010v5 versions prior to 1.1.0.46, update to version 1.1.0.46 or later.
For PR2000 versions prior to 1.0.0.20, update to version 1.0.0.20 or later.
For R6050 versions prior to 1.0.1.10, update to version 1.0.1.10 or later.
For R6220 versions prior to 1.1.0.60, update to version 1.1.0.60 or later.
For WNDR3700v5 versions prior to 1.1.0.50, update to version 1.1.0.50 or later.
For WNR1000v4 versions prior to 1.1.0.46, update to version 1.1.0.46 or later.
For WNR2020 versions prior to 1.1.0.46, update to version 1.1.0.46 or later.
For WNR2050 versions prior to 1.1.0.46, update to version 1.1.0.46 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jnr1010V2
Jr6150
Jwnr2010V5
Pr2000
R6050
R6220
Wndr3700V5
Wnr1000V4
Wnr2020
Wnr2050