2 matches found
CVE-2020-15634
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...
CVE-2020-15634
The CVE-2020-15634 issue concerns NETGEAR R6700 routers. The root cause is improper validation of a user-supplied string used as a format specifier during string table file uploads in the web server (httpd). This enables remote code execution by network-adjacent attackers without authentication, ...