Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. A TFTP server was found to be active by default. It allows remote authenticated users to update the switch firmware.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-12-29T23:38:16

Updated: 2024-08-04T17:09:15.219Z

Reserved: 2020-12-29T00:00:00

Link: CVE-2020-35801

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-12-30T00:15:14.457

Modified: 2024-11-21T05:28:08.977

Link: CVE-2020-35801

cve-icon Redhat

No data.