CVE-2019-20729
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
16/04/2020
Last modified:
21/07/2021
Description
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JNDR3000 before 1.0.0.22, R6250 before 1.0.4.26, R6300v2 before 1.0.4.22, R6400 before 1.0.1.36, R6400v2 before 1.0.2.52, R6700 before 1.0.1.44, R6900 before 1.0.1.44, R7000 before 1.0.9.28, R6900P before 1.3.1.26, R7000P before 1.3.1.26, R7300DST before 1.0.0.62, R7900 before 1.0.2.16, R8000 before 1.0.4.18, R7900P before 1.4.1.42, R8000P before 1.4.1.42, R8300 before 1.0.2.116, R8500 before 1.0.2.116, WNDR3400v3 before 1.0.1.18, WNDR4500v2 before 1.0.0.68, and WNR3500Lv2 before 1.2.0.48.
Impact
Base Score 3.x
4.40
Severity 3.x
MEDIUM
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:netgear:jndr3000_firmware:*:*:*:*:*:*:*:* | 1.0.0.22 (excluding) | |
cpe:2.3:h:netgear:jndr3000:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:netgear:r6250_firmware:*:*:*:*:*:*:*:* | 1.0.4.26 (excluding) | |
cpe:2.3:h:netgear:r6250:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:netgear:r6300_firmware:*:*:*:*:*:*:*:* | 1.0.4.22 (excluding) | |
cpe:2.3:h:netgear:r6300:v2:*:*:*:*:*:*:* | ||
cpe:2.3:o:netgear:r6400_firmware:*:*:*:*:*:*:*:* | 1.0.1.36 (excluding) | |
cpe:2.3:h:netgear:r6400:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:netgear:r6400_firmware:*:*:*:*:*:*:*:* | 1.0.2.52 (excluding) | |
cpe:2.3:h:netgear:r6400:v2:*:*:*:*:*:*:* | ||
cpe:2.3:o:netgear:r6700_firmware:*:*:*:*:*:*:*:* | 1.0.1.44 (excluding) | |
cpe:2.3:h:netgear:r6700:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:netgear:r6900_firmware:*:*:*:*:*:*:*:* | 1.0.1.44 (excluding) | |
cpe:2.3:h:netgear:r6900:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:netgear:r7000_firmware:*:*:*:*:*:*:*:* | 1.0.9.28 (excluding) |
To consult the complete list of CPE names with products and versions, see this page