15 matches found
EUVD-2020-26802
Malware in sbrugna...
CVE-2020-5641
Cross-site request forgery CSRF vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors...
NETGEAR GS108Ev3 Cross-Site Request Forgery Vulnerability
The GS108Ev3 is an 8-port Gigabit Simple Managed Switch from NETGEAR. A cross-site request forgery vulnerability exists in the NETGEAR GS108Ev3 2.06.10 and earlier firmware versions, which can be exploited by a remote attacker to hijack an administrator's authentication and change the product's...
CVE-2020-5641
Cross-site request forgery CSRF vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors...
CVE-2020-5641
Cross-site request forgery CSRF vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors...
CVE-2020-5641
CVE-2020-5641 affects NETGEAR GS108Ev3 devices running firmware 2.06.10 and earlier. A CSRF flaw in the device’s management interface can allow a remote attacker to hijack administrator authentication and change settings without user consent via unspecified vectors. The root cause is a CSRF vulne...
CVE-2020-5641
Cross-site request forgery CSRF vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors...
NETGEAR GS108Ev3 vulnerable to cross-site request forgery
Overview GS108Ev3 switching hub provided by NETGEAR contains a cross-site request forgery vulnerability CWE-352. Yuta Ikegami reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact If a user views a malicious page...
JVN#27806339: NETGEAR GS108Ev3 vulnerable to cross-site request forgery
GS108Ev3 switching hub provided by NETGEAR contains a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page while logged in to the management screen of the device, the product's settings may be changed without the user's intention or consent. Solution Update th...
Netgear Gs108ev3 跨站请求伪造漏洞
The GS108Ev3 is an 8-port Gigabit Simple Managed Switch from NETGEAR. A cross-site request forgery vulnerability exists in the NETGEAR GS108Ev3 2.06.10 and earlier firmware versions, which can be exploited by a remote attacker to hijack an administrator's authentication and change the product's...
CVE-2017-18862
Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE before 2017-05-11, GS108Ev3 before 2017-05-11, GS108PEv3 before 2017-05-11, GS116Ev2 before...
CVE-2019-20658
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects FS728TLP before 1.0.1.26, GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS108Ev3 before 2.06.08, GS108PEv3 before 2.06.08, GS110EMX before 1.0.1.4, GS116Ev2 before 2.6.0.35, GS408EPP before 1.0.0.15, GS80...
CVE-2019-20676
CVE-2019-20676 affects NETGEAR switches and related devices (e.g., FS728TLP, GS105Ev2/PE, GS108Ev3/PE, GS110EMX, GS116Ev2, GS408EPP, GS724TPv2, GS808E, GS810EMX, GS908E, GSS108E/GSS108EPP, JGS516PE/524Ev2/524PE, XS512EM, XS708Ev2, XS716E, XS724EM) with a function-level access control weakness. Th...
CVE-2019-20658
Technical details about CVE-2019-20658 are not publicly provided in the supplied documents; monitor for updates from vendors and security trackers.