← Volver a CVEs
CVE-2020-26927
CRITICAL9.4
Descripcion
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0.42, R6080 before 1.0.0.42, R6050 before 1.0.1.26, JR6150 before 1.0.1.26, R6120 before 1.0.0.66, R6220 before 1.1.0.100, R6260 before 1.1.0.66, R6700v2 before 1.2.0.62, R6800 before 1.2.0.62, R6900v2 before 1.2.0.62, AC2100 before 1.2.0.62, AC2400 before 1.2.0.62, AC2600 before 1.2.0.62, R7450 before 1.2.0.62, and WNR2020 before 1.1.0.62.
Detalles CVE
Puntuacion CVSS v3.19.4
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado10/9/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
netgear:ac2100netgear:ac2100_firmwarenetgear:ac2400netgear:ac2400_firmwarenetgear:ac2600netgear:ac2600_firmwarenetgear:d6200netgear:d6200_firmwarenetgear:d7000netgear:d7000_firmwarenetgear:jr6150netgear:jr6150_firmwarenetgear:r6020netgear:r6020_firmwarenetgear:r6050netgear:r6050_firmwarenetgear:r6080netgear:r6080_firmwarenetgear:r6120netgear:r6120_firmwarenetgear:r6220netgear:r6220_firmwarenetgear:r6260netgear:r6260_firmwarenetgear:r6700netgear:r6700_firmwarenetgear:r6800netgear:r6800_firmwarenetgear:r6900netgear:r6900_firmwarenetgear:r7450netgear:r7450_firmwarenetgear:wnr2020netgear:wnr2020_firmware
Referencias
https://kb.netgear.com/000062325/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-PSV-2019-0109(cve@mitre.org)
https://kb.netgear.com/000062325/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-PSV-2019-0109(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.