Netgear Gs116e Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Netgear Gs116e Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (18)
CVE-2020-35223 — CVSS 8.8 (high): The CSRF protection mechanism implemented in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices could be bypassed…
CVE-2020-35229 — CVSS 8.8 (high): The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated…
CVE-2020-35231 — CVSS 8.8 (high): The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an…
CVE-2020-35221 — CVSS 8.8 (high): The hashing algorithm implemented for NSDP password authentication on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was found to be insecure…
CVE-2020-35801 — CVSS 8.3 (high): Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE before 2.6.0.48, JGS524Ev2…
CVE-2020-35782 — CVSS 8.1 (high): Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524Ev2…
CVE-2020-35227 — CVSS 7.2 (high): A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web…
CVE-2020-35226 — CVSS 7.1 (high): NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allow unauthenticated users to modify the switch DHCP configuration by sending the…
CVE-2020-35230 — CVSS 6.8 (medium): Multiple integer overflow parameters were found in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices. Most of the…
CVE-2020-35225 — CVSS 6.8 (medium): The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters…
CVE-2017-18862 — CVSS 6.5 (medium): Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11…
CVE-2019-20658 — CVSS 6.5 (medium): Certain NETGEAR devices are affected by disclosure of sensitive information. This affects FS728TLP before 1.0.1.26, GS105Ev2 before…
CVE-2020-35224 — CVSS 6.5 (medium): A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote…
CVE-2020-35233 — CVSS 6.5 (medium): The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force…
CVE-2020-35783 — CVSS 6.5 (medium): Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, GS116Ev2…
CVE-2020-35784 — CVSS 6.2 (medium): Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524PE…
CVE-2019-20676 — CVSS 6.0 (medium): Certain NETGEAR devices are affected by lack of access control at the function level. This affects FS728TLP before 1.0.1.26, GS105Ev2…
CVE-2020-35228 — CVSS 4.8 (medium): A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote…