CVE-2020-35228
published 2021-03-10CVE-2020-35228: A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject…
medium4.8CVSS 3.1
AVNACLPRHUIRSCCLILAN
A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject arbitrary web script or HTML via the language parameter.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | gs116e_firmware | — | — |
| netgear | jgs516pe_firmware | — | — |