CVE-2020-35842 MEDIUM

CVE-2020-35842

Vendor N/A
Product n/a
Published December 29, 2020
Last update August 4, 2024

CVSS base score

6.9/10
Attack vector Adjacent
Attack complexity Low
Privileges required Low
User interaction Required
Confidentiality Low
Integrity High

CVSS vector

CVSS:3.1/AC:L/AV:A/A:N/C:L/I:H/PR:L/S:C/UI:R

What the vulnerability does

01Description

Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JNR1010v2 before 1.1.0.62, JR6150 before 1.0.1.24, JWNR2010v5 before 1.1.0.62, R6020 before 1.0.0.42, R6050 before 1.0.1.24, R6080 before 1.0.0.42, R6120 before 1.0.0.66, R6220 before 1.1.0.100, R6260 before 1.1.0.76, WNR1000v4 before 1.1.0.62, WNR2020 before 1.1.0.62, and WNR2050 before 1.1.0.62.

Key dates

02Disclosure timeline

December 29, 2020 CVE published
August 4, 2024 Record updated