Security Misconfiguration in NETGEAR WAC505 and WAC510 Devices
CVE-2019-20654

4.3MEDIUM

Key Information:

Vendor: Netgear
Status: Wac505 Firmware
Vendor: CVE Published:; 15 April 2020

What is CVE-2019-20654?

Certain NETGEAR WAC505 and WAC510 devices are susceptible to a security misconfiguration due to incorrect settings. This issue could lead to various security risks for users utilizing outdated versions prior to 8.0.6.4. It is crucial for administrators to ensure that their configurations are correctly set to safeguard their network environments.

References

https://kb.netgear.com/000061487/Security-Advisory-for-Se...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 15, 2020
Vulnerability Reserved
Apr 15, 2020

Netgear

What is CVE-2019-20654?

References

CVSS V3.1

Timeline