CVE-2020-13245
MEDIUM5.9CVSS v3
4.3CVSS v2
0.16%
EPSS (exploit probability)
CWE-295CWE
Description
Certain NETGEAR devices are affected by Missing SSL Certificate Validation. This affects R7000 1.0.9.6_1.2.19 through 1.0.11.100_10.2.10, and possibly R6120, R7800, R6220, R8000, R6350, R9000, R6400, RAX120, R6400v2, RBR20, R6800, XR300, R6850, XR500, and R7000P.
CVSS v3 vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected routers (3)
| Vendor | Model | Matched via | Affected versions | Fixed in | Patch? |
|---|---|---|---|---|---|
| Netgear | Netgear Nighthawk R7000 | — |
— | — | No |
| Netgear | Netgear Nighthawk R7800 | — |
— | — | No |
| Netgear | Netgear Nighthawk RAX120 | — |
— | — | No |