Security Misconfiguration in NETGEAR WAC505 and WAC510 Devices
CVE-2019-20693

5.4MEDIUM

Key Information:

Vendor: Netgear
Status: Wac505 Firmware
Vendor: CVE Published:; 16 April 2020

Summary

Certain NETGEAR devices, specifically the WAC505 and WAC510 models, are impacted by a security misconfiguration which can leave devices vulnerable to potential exploitation. Versions earlier than 8.0.6.4 are affected, and users are advised to review their security settings to ensure they are properly configured, thus mitigating associated risks. For more information, refer to the official NETGEAR advisory.

References

https://kb.netgear.com/000061236/Security-Advisory-for-Se...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 16, 2020
Vulnerability Reserved
Apr 15, 2020