RouterCVE

CVE-2020-35834

MEDIUM
6.1CVSS v3
3.5CVSS v2
0.40% EPSS (exploit probability)
CWE-79CWE

Description

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.

CVSS v3 vector: CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Affected routers (2)

VendorModelMatched viaAffected versionsFixed inPatch?
Netgear Netgear Nighthawk R7800 No
Netgear Netgear Nighthawk RAX120 No

External references