NETGEAR JGS516PE devices prior to 2.6.0.43 are affected by lack of access control at the function level.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netgear jgs516pe firmware |
One of them is a critical RCE bug If you own one of these 45 Netgear devices, replace it: Kit maker won't patch vulnerable gear despite live proof-of-concept code
Netgear has released a swathe of security and firmware updates for its JGS516PE Ethernet switch after researchers from NCC Group discovered 15 vulnerabilities in the device – including an unauthenticated remote code execution flaw. The switch is vulnerable to nine high-severity vulns and a further five medium-rated ones, said NCC Group IT security consultant Manuel Ginés Rodriquez in a damning blog post about his findings. The critical vuln, an RCE (CVE-2020-26919), came about because firmwar...