The NETGEAR R6020 is a router from Netgear, Inc. NETGEAR R6020 is vulnerable to a command injection vulnerability in version 1.0.0.48, which stems from a lack of validation and filtering in the ntp_server field of setup.cgi. An attacker with administrator status can use this vulnerability to inject and execute arbitrary shell commands.