Sensitive Information Disclosure in NETGEAR RAX40 Router Products
CVE-2019-20643

7.7HIGH

Key Information:

Vendor: Netgear
Status: Rax40 Firmware
Vendor: CVE Published:; 15 April 2020

Summary

NETGEAR RAX40 devices running software versions prior to 1.0.3.64 are vulnerable to unauthorized disclosure of sensitive information. This security issue can lead to exposure of data that could be exploited by an attacker. Users are recommended to update their devices to the latest firmware to mitigate risks associated with this vulnerability.

References

https://kb.netgear.com/000061499/Security-Advisory-for-Se...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 15, 2020
Vulnerability Reserved
Apr 15, 2020