CVE-2019-20717Improper Input Validation in Netgear D3600 Firmware

CWE-20Improper Input Validation3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 58.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
23
Netgear D3600 FirmwareNetgear D6000 FirmwareNetgear D7800 Firmware+20 more
Timeline
PublishedApr 16
Latest updateMay 24

Description

Certain NETGEAR devices are affected by denial of service. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D7800 before 1.0.1.44, EX2700 before 1.0.1.52, EX6200v2 before 1.0.1.74, EX8000 before 1.0.1.180, R7500v2 before 1.0.3.38, R7800 before 1.0.2.58, RBK20 before 2.3.0.28, RBR20 before 2.3.0.28, RBS20 before 2.3.0.28, RBK50 before 2.3.0.32, RBR50 before 2.3.0.32, RBS50 before 2.3.0.32, RBS40 before 2.3.0.28, SRK60 before 2.2.1.210, SRR60 before 2.2.1.210, SRS60 before 2.2.1.210, WN2

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages23 packages

NVDnetgear/d3600_firmware< 1.0.0.75
NVDnetgear/d6000_firmware< 1.0.0.75
NVDnetgear/d7800_firmware< 1.0.1.44
NVDnetgear/r7800_firmware< 1.0.2.58
NVDnetgear/rbk20_firmware< 2.3.0.28

🔴Vulnerability Details

2
GHSA
GHSA-g4ph-3r63-c5p9: Certain NETGEAR devices are affected by denial of service2022-05-24
CVEList
CVE-2019-20717: Certain NETGEAR devices are affected by denial of service2020-04-16
CVE-2019-20717 — Improper Input Validation in Netgear | cvebase