The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the device.
References
Configurations
History
17 Mar 2021, 15:34
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches/ - Vendor Advisory | |
CPE | cpe:2.3:o:netgear:jgs516pe_firmware:2.6.0.43:*:*:*:*:*:*:* cpe:2.3:h:netgear:jgs516pe:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:gs116e_firmware:2.6.0.43:*:*:*:*:*:*:* cpe:2.3:h:netgear:gs116e:v2:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 8.3
v3 : 8.8 |
CWE | CWE-287 |
10 Mar 2021, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-03-10 19:15
Updated : 2023-12-10 13:41
NVD link : CVE-2020-35231
Mitre link : CVE-2020-35231
CVE.ORG link : CVE-2020-35231
JSON object : View
Products Affected
netgear
- gs116e
- jgs516pe
- gs116e_firmware
- jgs516pe_firmware
CWE
CWE-287
Improper Authentication