CVE-2020-35785

CWE-287Improper Authentication3 documents3 sources
Severity
8.8HIGH
EPSS
0.1%
top 67.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netgear Dgn2200 Firmware
Timeline
PublishedDec 30
Latest updateMay 24

Description

NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication (aka PSV-2020-0363, PSV-2020-0364, and PSV-2020-0365).

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 1.6 | Impact: 6.0

Affected Packages1 packages

NVDnetgear/dgn2200_firmware< 1.0.0.60

🔴Vulnerability Details

2
GHSA
GHSA-f6gr-xm3f-89xf: NETGEAR DGN2200v1 devices before v12022-05-24
CVEList
CVE-2020-35785: NETGEAR DGN2200v1 devices before v12020-12-29