CVE-2020-26922

6.4MEDIUM

Key Information:

Vendor: Netgear
Status: Wc7500 Firmware
Vendor: CVE Published:; 9 October 2020

Summary

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects WC7500 before 6.5.5.24, WC7600 before 6.5.5.24, WC7600v2 before 6.5.5.24, and WC9500 before 6.5.5.24.

References

https://kb.netgear.com/000062330/Security-Advisory-for-Po...

x_refsource_MISC

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 9, 2020
Vulnerability Reserved
Oct 9, 2020