CVE-2019-20486

2020-03-0215:06:33

mitre

www.cve.org

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

37.3%

JSON

An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple pages (setup.cgi and adv_index.htm) within the web management console are vulnerable to stored XSS, as demonstrated by the configuration of the UI language.

References

www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2019/august/the-netgear-wnr1000v4-round-2/