Published: 16/04/2020 Updated: 21/04/2020

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 4.8 | Impact Score: 2.7 | Exploitability Score: 1.7

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

Certain NETGEAR devices are affected by reflected XSS. This affects D3600 prior to 1.0.0.75, D6000 prior to 1.0.0.75, D7800 prior to 1.0.1.44, DM200 prior to 1.0.0.58, R7800 prior to 1.0.2.58, R8900 prior to 1.0.4.12, R9000 prior to 1.0.4.8, RBK20 prior to 2.3.0.28, RBR20 prior to 2.3.0.28, RBS20 prior to 2.3.0.28, RBK40 prior to 2.3.0.28, RBS40 prior to 2.3.0.28, RBK50 prior to 2.3.0.32, RBR50 prior to 2.3.0.32, RBS50 prior to 2.3.0.32, WN3000RPv2 prior to 1.0.0.68, WN3000RPv3 prior to 1.0.2.70, WN3100RPv2 prior to 1.0.0.60, WNDR4300v2 prior to 1.0.0.58, WNDR4500v3 prior to 1.0.0.58, and WNR2000v5 prior to 1.0.0.68.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear d3600_firmware
netgear d6000_firmware
netgear d7800_firmware
netgear dm200_firmware
netgear r7800_firmware
netgear r8900_firmware
netgear r9000_firmware
netgear rbk20_firmware
netgear rbr20_firmware
netgear rbs20_firmware
netgear rbk40_firmware
netgear rbs40_firmware
netgear rbk50_firmware
netgear rbr50_firmware
netgear rbs50_firmware
netgear wn3000rp_firmware
netgear wn3100rp_firmware
netgear wndr4300_firmware
netgear wndr4500_firmware
netgear wnr2000_firmware

CWE-79 https://kb.netgear.com/000060973/Security-Advisory-for-Reflected-Cross-Site-Scripting-on-Some-Routers-Gateways-and-WiFi-Systems-PSV-2018-0252 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-20746

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect