CVE-2019-20681
Last modified
CVE-2019-20681 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.34, D7000 before 1.0.1.68, JR6150 before 1.0.1.18, PR2000 before 1.0.0.28, R6050 before 1.0.1.18, R6120 before 1.0.0.46, R6220 before 1.1.0.80, R6260 before 1.1.0.64, R6700v2 before 1.2.0.36, R6800 before 1.2.0.36, and R6900v2 before 1.2.0.36.. EPSS estimates a 1.10% chance of exploitation in the next 30 days.
Description
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.34, D7000 before 1.0.1.68, JR6150 before 1.0.1.18, PR2000 before 1.0.0.28, R6050 before 1.0.1.18, R6120 before 1.0.0.46, R6220 before 1.1.0.80, R6260 before 1.1.0.64, R6700v2 before 1.2.0.36, R6800 before 1.2.0.36, and R6900v2 before 1.2.0.36.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netgear | D6200 Firmware | < 1.1.00.34 |
| Netgear | D7000 Firmware | < 1.0.1.68 |
| Netgear | Jr6150 Firmware | < 1.0.1.18 |
| Netgear | Pr2000 Firmware | < 1.0.0.28 |
| Netgear | R6050 Firmware | < 1.0.1.18 |
| Netgear | R6120 Firmware | < 1.0.0.46 |
| Netgear | R6220 Firmware | < 1.1.0.80 |
| Netgear | R6260 Firmware | < 1.1.0.64 |
| Netgear | R6700 Firmware | < 1.2.0.36 |
| Netgear | R6800 Firmware | < 1.2.0.36 |
| Netgear | R6900 Firmware | < 1.2.0.36 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-20681?
How severe is CVE-2019-20681?
How do I fix CVE-2019-20681?
Are you affected by CVE-2019-20681?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST