84 matches found
EUVD-2020-23456
Malware in sbrugna...
EUVD-2020-23439
Malware in sbrugna...
The vulnerability of the Netgear Switch Discovery Protocol (NSDP) implementation in the microprogrammable switching devices NETGEAR ProSAFE Plus JGS516PE and ProSAFE Plus GS116Ev2 allows a perpetrator to increase their privileges.
The vulnerability of the Netgear Switch Discovery Protocol NSDP implementation of the NETGEAR ProSAFE Plus JGS516PE and ProSAFE Plus GS116Ev2 microprogrammable switching devices is related to the use of a hashing algorithm that contains vulnerabilities. Exploiting this vulnerability could allow a...
The vulnerability of the TFTP server for microprogramming software of NETGEAR ProSAFE Plus JGS516PE and ProSAFE Plus GS116Ev2 allows a intruder to increase their privileges.
The vulnerability of the TFTP server for microprogramming software in NETGEAR ProSAFE Plus JGS516PE and ProSAFE Plus GS116Ev2 devices is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...
The vulnerability of the TFTP microprogramming software used in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices allows a intruder to cause service interruptions.
The vulnerability of the TFTP microprogramming software used in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...
The vulnerability in the web administration panel of Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 microprogrammed network devices allows a hacker to perform cross-site scripting attacks.
The vulnerability of the web administration panel of Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 networking devices is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...
The vulnerability in the web-based administration panel of Microprogramming software for Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 allows a intruder to trigger a service failure or execute arbitrary code.
The vulnerability of the web-based administration panel of Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 networking devices is related to insufficient verification of input parameters. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary cod...
The vulnerability of the NSDP protocol implementation in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices allows a hacker to bypass access controls and gain full control over the device.
The vulnerability of the NSDP protocol implementation in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 networking devices is related to authentication process errors. Exploiting this vulnerability allows an attacker to bypass access controls and gain full control over the device...
The vulnerability in the web administration panel of Microprogrammed software for Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 allows a hacker to add IP addresses to a white list.
The vulnerability of the web-based administration panel of Microprogramming software for Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 lies in insufficient verification of input parameters. Exploiting this vulnerability allows an attacker to add IP addresses to a white list using the...
The vulnerability of the DCHP server configuration of Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices allows a hacker to cause a service failure.
The vulnerability of the DCHP configuration of Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 networking devices relates to insufficient cleaning of special elements in the output data used by the incoming component. Exploiting this vulnerability can allow a malicious actor to trigger...
The vulnerability of the implementation of the microprogramming software update mechanism for Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 devices allows a hacker to increase their privileges.
The vulnerability of the mechanism for updating microprogrammable software in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 devices is related to deficiencies in input data validation. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...
NETGEAR JGS516PE/GS116Ev2 Cross-Site Scripting Vulnerability
The NETGEAR JGS516PE/GS116Ev2 is a 16-port Gigabit Smart Managed Plus switch. A cross-site scripting vulnerability exists in the management web panel of the NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML via the...
NETGEAR JGS516PE/GS116Ev2 Unauthenticated Write Access Privilege to DHCP Configuration Vulnerability
The NETGEAR JGS516PE/GS116Ev2 is a 16-port Gigabit Smart Managed Plus switch. A security vulnerability exists in the NETGEAR JGS516PE/GS116Ev2 version 2.6.0.43. An attacker can exploit the vulnerability to force multiple DHCP requests or disable them, potentially resulting in a denial of service...
CVE-2020-35231
The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the device...
CVE-2020-35230
Multiple integer overflow parameters were found in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices. Most of the integer parameters sent through the web server can be abused to cause a denial of service attack...
CVE-2020-35226
NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allow unauthenticated users to modify the switch DHCP configuration by sending the corresponding write request command...
CVE-2020-35228
A cross-site scripting XSS vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject arbitrary web script or HTML via the language parameter...
CVE-2020-35227
A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices in the administration web panel allows an attacker to inject IP addresses into the whitelist via the checkedList parameter to the delete command...
CVE-2020-35229
The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers with access to network traffic to effectively gain administrative privileges...
CVE-2020-35226
NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allow unauthenticated users to modify the switch DHCP configuration by sending the corresponding write request command...