2 matches found
CVE-2019-20703
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32...
CVE-2019-20703
CVE-2019-20703 affects NETGEAR D3600 (before 1.0.0.76), D6000 (before 1.0.0.76), and XR500 (before 2.3.2.32). The vulnerability is an OS command injection that occurs when an authenticated user constructs an OS command from externally provided data without proper filtering of special characters. ...