CVE-2020-35791

6.4MEDIUM

Key Information:

Vendor: Netgear
Status: R7800 Firmware
Vendor: CVE Published:; 30 December 2020

Summary

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7800 before 1.0.2.68, R8900 before 1.0.5.2, and R9000 before 1.0.5.2.

References

https://kb.netgear.com/000062714/Security-Advisory-for-Po...

x_refsource_MISC

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 30, 2020
Vulnerability Reserved
Dec 29, 2020