10

CVE-2020-26908

Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.36, D7000 before 1.0.1.74, PR2000 before 1.0.0.30, R6020 before 1.0.0.42, R6050 before 1.0.1.22, JR6150 before 1.0.1.22, R6080 before 1.0.0.42, R6120 before 1.0.0.66, R6220 before 1.1.0.100, R6230 before 1.1.0.100, R6260 before 1.1.0.64, R6700v2 before 1.2.0.62, R6800 before 1.2.0.62, R69002 before 1.2.0.62, and WNR2020 before 1.1.0.62.

Data is provided by the National Vulnerability Database (NVD)
NetgearD6200 Firmware Version < 1.1.00.36
   NetgearD6200 Version-
NetgearD7000 Firmware Version < 1.0.1.74
   NetgearD7000 Version-
NetgearPr2000 Firmware Version < 1.0.0.30
   NetgearPr2000 Version-
NetgearR6020 Firmware Version < 1.0.0.42
   NetgearR6020 Version-
NetgearR6050 Firmware Version < 1.0.1.22
   NetgearR6050 Version-
NetgearR6080 Firmware Version < 1.0.0.42
   NetgearR6080 Version-
NetgearR6120 Firmware Version < 1.0.0.66
   NetgearR6120 Version-
NetgearR6220 Firmware Version < 1.1.0.100
   NetgearR6220 Version-
NetgearR6260 Firmware Version < 1.1.0.64
   NetgearR6260 Version-
NetgearR6700v2 Firmware Version < 1.2.0.62
   NetgearR6700v2 Version-
NetgearR6800 Firmware Version < 1.2.0.62
   NetgearR6800 Version-
NetgearR6900 Firmware Version < 1.2.0.62
   NetgearR6900 Version-
NetgearWnr2020 Firmware Version < 1.1.0.62
   NetgearWnr2020 Version-
NetgearJr6150 Firmware Version < 1.0.1.22
   NetgearJr6150 Version-
NetgearR6230 Firmware Version < 1.1.0.100
   NetgearR6230 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.63% 0.677
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
cve@mitre.org 9.4 3.9 5.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L