CVE-2019-20691
Last modified
CVE-2019-20691 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Certain NETGEAR devices are affected by CSRF. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.24, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, and WN2500RPv2 before 1.0.1.54.. EPSS estimates a 0.46% chance of exploitation in the next 30 days.
Description
Certain NETGEAR devices are affected by CSRF. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.24, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, and WN2500RPv2 before 1.0.1.54.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netgear | D3600 Firmware | < 1.0.0.72 |
| Netgear | D6000 Firmware | < 1.0.0.72 |
| Netgear | Ex3700 Firmware | < 1.0.0.70 |
| Netgear | Ex3800 Firmware | < 1.0.0.70 |
| Netgear | Ex6000 Firmware | < 1.0.0.30 |
| Netgear | Ex6100 Firmware | < 1.0.2.24 |
| Netgear | Ex6120 Firmware | < 1.0.0.40 |
| Netgear | Ex6130 Firmware | < 1.0.0.22 |
| Netgear | Ex6150 Firmware | < 1.0.0.42 |
| Netgear | Ex6200 Firmware | < 1.0.3.88 |
| Netgear | Ex7000 Firmware | < 1.0.0.66 |
| Netgear | Wn2500rp Firmware | < 1.0.1.54 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-20691?
How severe is CVE-2019-20691?
How do I fix CVE-2019-20691?
Are you affected by CVE-2019-20691?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST