CVE-2019-20690

Published: Apr 16, 2020Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.30, D7000 before 1.0.1.66, R6020 before 1.0.0.34, R6080 before 1.0.0.34, R6120 before 1.0.0.44, R6220 before 1.1.0.68, WNR2020 before 1.1.0.54, and WNR614 before 1.1.0.54.

Affected (8)

Products: Netgear: D6200 Firmware, D7000 Firmware, R6020 Firmware, R6080 Firmware, R6120 Firmware, R6220 Firmware, Wnr2020 Firmware, Wnr614 Firmware

8 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear D6200 Firmware	Before 1.1.00.30

Running on/with	Platform Versions
Netgear D6200	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear D7000 Firmware	Before 1.0.1.66

Running on/with	Platform Versions
Netgear D7000	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear R6020 Firmware	Before 1.0.0.34

Running on/with	Platform Versions
Netgear R6020	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear R6080 Firmware	Before 1.0.0.34

Running on/with	Platform Versions
Netgear R6080	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear R6120 Firmware	Before 1.0.0.44

Running on/with	Platform Versions
Netgear R6120	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear R6220 Firmware	Before 1.1.0.68

Running on/with	Platform Versions
Netgear R6220	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Wnr2020 Firmware	Before 1.1.0.54

Running on/with	Platform Versions
Netgear Wnr2020	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Wnr614 Firmware	Before 1.1.0.54

Running on/with	Platform Versions
Netgear Wnr614	All versions

References (2)

https://kb.netgear.com/000061449/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-and-Gateways-PSV-2018-0073

Source: cve@mitre.org

Vendor Advisory

https://kb.netgear.com/000061449/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-and-Gateways-PSV-2018-0073

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.