CVE-2019-5054
The CVE is confirmed in NETGEAR N300 WNR2000v5 with firmware 1.0.0.70: an unauthenticated HTTP request containing an empty User-Agent to a page requiring authentication can trigger a null pointer dereference, crashing the HTTP server (DoS). TALOS-2019-0831 documents the flaw and notes firmware 1....