Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear jgs516pe firmware vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-26919
NETGEAR JGS516PE devices prior to 2.6.0.43 are affected by lack of access control at the function level.
Netgear Jgs516pe Firmware
1 Article
8.8
CVSSv3
CVE-2020-35229
The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers (with access to network traffic) to effectively gain administrative...
Netgear Gs116e Firmware 2.6.0.43
Netgear Jgs516pe Firmware 2.6.0.43
8.8
CVSSv3
CVE-2020-35231
The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an malicious user to bypass access controls and obtain full control of the device.
Netgear Gs116e Firmware 2.6.0.43
Netgear Jgs516pe Firmware 2.6.0.43
8.8
CVSSv3
CVE-2020-35221
The hashing algorithm implemented for NSDP password authentication on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was found to be insecure, allowing attackers (with access to a network capture) to quickly generate multiple collisions to generate valid passwords, or infer some par...
Netgear Gs116e Firmware 2.6.0.43
Netgear Jgs516pe Firmware 2.6.0.43
8.8
CVSSv3
CVE-2020-35223
The CSRF protection mechanism implemented in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices could be bypassed by omitting the CSRF token parameter in HTTP requests.
Netgear Gs116e Firmware 2.6.0.43
Netgear Jgs516pe Firmware 2.6.0.43
8.1
CVSSv3
CVE-2020-35782
Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE prior to 2.6.0.48, JGS524Ev2 prior to 2.6.0.48, JGS524PE prior to 2.6.0.48, and GS116Ev2 prior to 2.6.0.48. The TFTP firmware update mechanism does not properly implement f...
Netgear Jgs516pe Firmware
Netgear Jgs524e Firmware
Netgear Jgs524pe Firmware
Netgear Gs116e Firmware
7.3
CVSSv3
CVE-2020-35801
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE prior to 2.6.0.48, JGS524Ev2 prior to 2.6.0.48, JGS524PE prior to 2.6.0.48, and GS116Ev2 prior to 2.6.0.48. A TFTP server was found to be active by default. It allows remot...
Netgear Jgs516pe Firmware
Netgear Jgs524e Firmware
Netgear Jgs524pe Firmware
Netgear Gs116e Firmware
7.2
CVSSv3
CVE-2020-35227
A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web panel) allows an malicious user to inject IP addresses into the whitelist via the checkedList parameter to the delete command.
Netgear Gs116e Firmware 2.6.0.43
Netgear Jgs516pe Firmware 2.6.0.43
7.2
CVSSv3
CVE-2020-35784
Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE prior to 2.6.0.48, JGS524PE prior to 2.6.0.48, JGS524Ev2 prior to 2.6.0.48, and GS116Ev2 prior to 2.6.0.48.
Netgear Jgs516pe Firmware
Netgear Jgs524e Firmware
Netgear Jgs524pe Firmware
Netgear Gs116e Firmware
7.1
CVSSv3
CVE-2020-35226
NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allow unauthenticated users to modify the switch DHCP configuration by sending the corresponding write request command.
Netgear Gs116e Firmware 2.6.0.43
Netgear Jgs516pe Firmware 2.6.0.43
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »