CVE-2019-19356

Name: CVE-2019-19356
Creator: NVD / NIST
Published: 2020-02-07T23:15:10.013+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.5/10Actively ExploitedEPSS 27.96%

Last modified Jun 17, 2026

CVE-2019-19356 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. Netis WF2419 is vulnerable to authenticated Remote Code Execution (RCE) as root through the router Web management page. The vulnerability has been found in firmware version V1.2.31805 and V2.2.36123. CISA has confirmed active exploitation in the wild. EPSS estimates a 27.96% chance of exploitation in the next 30 days.

Description

Netis WF2419 is vulnerable to authenticated Remote Code Execution (RCE) as root through the router Web management page. The vulnerability has been found in firmware version V1.2.31805 and V2.2.36123. After one is connected to this page, it is possible to execute system commands as root through the tracert diagnostic tool because of lack of user input sanitizing.

Metrics

CVSS 3.1

7.5/10

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

27.96%

97.9th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by May 3, 2022.

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Netis-Systems	Wf2419 Firmware	1.2.31805
Netis-Systems	Wf2419 Firmware	2.2.36123

References

http://packetstormsecurity.com/files/156588/Netis-WF2419-2.2.36123-Remote-Code-Execution.htmlExploit, Third Party Advisory, VDB Entry
https://github.com/shadowgatt/CVE-2019-19356Exploit, Third Party Advisory
https://www.digital.security/en/blog/netis-routers-remote-code-execution-cve-2019-19356Exploit, Third Party Advisory
http://packetstormsecurity.com/files/156588/Netis-WF2419-2.2.36123-Remote-Code-Execution.htmlExploit, Third Party Advisory, VDB Entry
https://github.com/shadowgatt/CVE-2019-19356Exploit, Third Party Advisory
https://www.digital.security/en/blog/netis-routers-remote-code-execution-cve-2019-19356Exploit, Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-19356US Government Resource

Timeline

Published: Feb 7, 2020
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2019-19356?

How severe is CVE-2019-19356?

CVE-2019-19356 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 27.96% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2019-19356?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-19356?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST