CVE-2020-35229

Name of the Vulnerable Software and Affected Versions: NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43

Description: The issue is related to the authentication token required for NSDP write requests on the affected devices. This token is not properly invalidated and can be reused until a new token is generated, allowing attackers with access to network traffic to gain administrative privileges. The vulnerability is associated with errors in the authentication procedure.

Recommendations: For NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43, as a temporary workaround, consider restricting access to the NSDP protocol until a patch is available. Additionally, ensure that network traffic is properly secured to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.