CVE-2020-26917
published 2020-10-09CVE-2020-26917: Certain NETGEAR devices are affected by stored XSS. This affects EX7000 before 1.0.1.78, R6250 before 1.0.4.34, R6400 before 1.0.1.46, R6400v2 before 1.0.2.66…
medium4.8CVSS 3.1
AVNACLPRHUIRSCCLILAN
Certain NETGEAR devices are affected by stored XSS. This affects EX7000 before 1.0.1.78, R6250 before 1.0.4.34, R6400 before 1.0.1.46, R6400v2 before 1.0.2.66, R7100LG before 1.0.0.50, R7300DST before 1.0.0.70, R7900 before 1.0.3.8, R8300 before 1.0.2.128, and R8500 before 1.0.2.128.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | ex7000_firmware | < 1.0.1.78 | 1.0.1.78 |
| netgear | r6250_firmware | < 1.0.4.34 | 1.0.4.34 |
| netgear | r6400_firmware | < 1.0.1.46 | 1.0.1.46 |
| netgear | r6400v2_firmware | < 1.0.2.66 | 1.0.2.66 |
| netgear | r7100lg_firmware | < 1.0.0.50 | 1.0.0.50 |
| netgear | r7300dst_firmware | < 1.0.0.70 | 1.0.0.70 |
| netgear | r7900_firmware | < 1.0.3.8 | 1.0.3.8 |
| netgear | r8300_firmware | < 1.0.2.128 | 1.0.2.128 |
| netgear | r8500_firmware | < 1.0.2.128 | 1.0.2.128 |