Published: 30/12/2020 Updated: 31/12/2020

CVSS v2 Base Score: 5.2 | Impact Score: 6.4 | Exploitability Score: 5.1

CVSS v3 Base Score: 8 | Impact Score: 5.9 | Exploitability Score: 2.1

VMScore: 463

Vector: AV:A/AC:L/Au:S/C:P/I:P/A:P

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D3600 prior to 1.0.0.76, D6000 prior to 1.0.0.76, D6200 prior to 1.1.00.36, D7000 prior to 1.0.1.70, EX6200v2 prior to 1.0.1.78, EX7000 prior to 1.0.1.78, EX8000 prior to 1.0.1.186, JR6150 prior to 1.0.1.18, PR2000 prior to 1.0.0.28, R6020 prior to 1.0.0.42, R6050 prior to 1.0.1.18, R6080 prior to 1.0.0.42, R6120 prior to 1.0.0.46, R6220 prior to 1.1.0.80, R6260 prior to 1.1.0.64, R6300v2 prior to 1.0.4.34, R6700 prior to 1.0.2.6, R6700v2 prior to 1.2.0.36, R6800 prior to 1.2.0.36, R6900 prior to 1.0.2.4, R6900P prior to 1.3.1.64, R6900v2 prior to 1.2.0.36, R7000 prior to 1.0.9.42, R7000P prior to 1.3.1.64, R7800 prior to 1.0.2.60, R8900 prior to 1.0.4.12, R9000 prior to 1.0.4.12, and XR500 prior to 2.3.2.40.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear d3600_firmware
netgear d6000_firmware
netgear d6200_firmware
netgear d7000_firmware
netgear ex6200_firmware
netgear ex7000_firmware
netgear ex8000_firmware
netgear jr6150_firmware
netgear pr2000_firmware
netgear r6020_firmware
netgear r6050_firmware
netgear r6080_firmware
netgear r6120_firmware
netgear r6220_firmware
netgear r6260_firmware
netgear r6300_firmware
netgear r6700_firmware
netgear r6800_firmware
netgear r6900_firmware
netgear r6900p_firmware
netgear r7000_firmware
netgear r7000p_firmware
netgear r7800_firmware
netgear r8900_firmware
netgear r9000_firmware
netgear xr500_firmware

CWE-120 https://kb.netgear.com/000062710/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Routers-and-Range-Extenders-PSV-2018-0379 https://nvd.nist.gov

CVE-2020-35787

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect