Lucene search

CVE-2020-5641

🗓️ 24 Nov 2020 07:11:15Reported by jpcertType

Cross-site request forgery (CSRF) vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
NVD	CVE-2020-5641	24 Nov 202007:15	–	nvd
Japan Vulnerability Notes	JVN#27806339: NETGEAR GS108Ev3 vulnerable to cross-site request forgery	24 Nov 202000:00	–	jvn
CNVD	NETGEAR GS108Ev3 Cross-Site Request Forgery Vulnerability	25 Nov 202000:00	–	cnvd
Cvelist	CVE-2020-5641	24 Nov 202006:55	–	cvelist
Prion	Cross site request forgery (csrf)	24 Nov 202007:15	–	prion

Nvd

Vulners

Node

netgear gs108ev3_firmwareRange≤2.06.10

AND

netgear gs108ev3Match-

[
  {
    "product": "GS108Ev3",
    "vendor": "Netgear Japan G.K.",
    "versions": [
      {
        "status": "affected",
        "version": "Firmware version 2.06.10 and earlier"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN27806339/index.html
kb	www.kb.netgear.com/000062496/GS108Ev3-Firmware-Version-2-06-14

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Nov 2020 07:15Current

6.7Medium risk

Vulners AI Score6.7

CVSS24.3

CVSS36.5

EPSS0.00092

CWE-352