Buffer Overflow in NETGEAR Routers and Extenders
CVE-2019-20734

8.2HIGH

Key Information:

Vendor: Netgear
Status: D6220 Firmware
Vendor: CVE Published:; 16 April 2020

What is CVE-2019-20734?

Certain NETGEAR routers and extenders are vulnerable to a pre-authentication buffer overflow, which could allow unauthenticated attackers to execute arbitrary code. This issue affects a wide range of devices prior to their respective firmware versions. It may stem from an incomplete fix related to a previous vulnerability, making it crucial for users to update their firmware to mitigate potential exploits.

References

https://kb.netgear.com/000061192/Security-Advisory-for-Pr...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 16, 2020
Vulnerability Reserved
Apr 15, 2020

Netgear

What is CVE-2019-20734?

References

CVSS V3.1

Timeline