CVE-2020-35223
published 2021-03-10CVE-2020-35223: The CSRF protection mechanism implemented in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices could be bypassed by omitting the CSRF…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
The CSRF protection mechanism implemented in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices could be bypassed by omitting the CSRF token parameter in HTTP requests.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | gs116e_firmware | — | — |
| netgear | jgs516pe_firmware | — | — |