Vulnerability Details CVE-2020-35784
Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, and GS116Ev2 before 2.6.0.48.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.6%
CVSS Severity
CVSS v3 Score 6.2
CVSS v2 Score 6.5
References
Products affected by CVE-2020-35784
-
cpe:2.3:h:netgear:gs116e:v2
-
cpe:2.3:h:netgear:jgs516pe:-
-
cpe:2.3:h:netgear:jgs524e:v2
-
cpe:2.3:h:netgear:jgs524pe:-
-
cpe:2.3:o:netgear:gs116e_firmware:2.6.0.35
-
cpe:2.3:o:netgear:gs116e_firmware:2.6.0.43
-
cpe:2.3:o:netgear:jgs516pe_firmware:-
-
cpe:2.3:o:netgear:jgs516pe_firmware:2.6.0.35
-
cpe:2.3:o:netgear:jgs516pe_firmware:2.6.0.43
-
cpe:2.3:o:netgear:jgs524e_firmware:2.6.0.35
-
cpe:2.3:o:netgear:jgs524pe_firmware:2.6.0.35