5 matches found
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-35801. Reason: This candidate is a reservation duplicate of CVE-2020-35801. Notes: All CVE users should reference CVE-2020-35801 instead of this candidate. All references and descriptions in this candidate have been removed t...
CVE-2020-35220
CVE-2020-35220 is a reservation duplicate of CVE-2020-35801. Public details identify NETGEAR JGS516PE/GS116Ev2 (and related models) with an active-by-default TFTP server vulnerability that allows remote authenticated firmware updates; affected versions are prior to 2.6.0.48. Remediation is to upg...
CVE-2020-35801
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. A TFTP server was found to be active by default. It allows remote authenticated users to...
CVE-2020-35801
Affected devices: NETGEAR ProSAFE switches JGS516PE, JGS524Ev2, JGS524PE, and GS116Ev2 (pre-2.6.0.48). Description: incorrect configuration of security settings leaves a TFTP server active by default, allowing remote authenticated users to update the switch firmware. Impact: potential unauthorize...
CVE-2020-35801
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. A TFTP server was found to be active by default. It allows remote authenticated users to...