CVE-2020-35233

Name of the Vulnerable Software and Affected Versions: NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43

Description: The TFTP server fails to handle multiple connections, allowing external attackers to force device reboots by sending concurrent connections, resulting in a denial of service attack. This issue is related to an uncontrolled resource consumption vulnerability in the TFTP server of the affected devices.

Recommendations: For NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43, consider disabling the TFTP server as a temporary workaround to prevent exploitation until a patch is available. Restrict access to the device to minimize the risk of external attackers sending concurrent connections. At the moment, there is no information about a newer version that contains a fix for this vulnerability.