Certain NETGEAR devices are affected by stored XSS. This affects D6100 before 1.0.0.63, DM200 before 1.0.0.61, R7800 before 1.0.2.52, R8900 before 1.0.4.12, R9000 before 1.0.4.12, WN3000RPv2 before 1.0.0.68, and WNR2000v5 before 1.0.0.66.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
History
21 Nov 2024, 05:28
Type | Values Removed | Values Added |
---|---|---|
References | () https://kb.netgear.com/000062708/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-and-Range-Extenders-PSV-2018-0158 - Vendor Advisory |
Information
Published : 2020-12-30 00:15
Updated : 2024-11-21 05:28
NVD link : CVE-2020-35808
Mitre link : CVE-2020-35808
CVE.ORG link : CVE-2020-35808
JSON object : View
Products Affected
netgear
- r8900_firmware
- r7800_firmware
- dm200_firmware
- r7800
- d6100
- wnr2000v5
- r9000
- d6100_firmware
- r8900
- wnr2000v5_firmware
- wn3000rpv2
- dm200
- r9000_firmware
- wn3000rpv2_firmware
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')