CVE-2019-20675

Vulnerability

A stored cross-site scripting (XSS) vulnerability exists in certain NETGEAR WiFi system models: RBR50, RBS50, and RBK50 running firmware versions prior to 2.3.5.30 [1]. The vulnerability is present in the device's web management interface and can be exploited when an authenticated administrator with high privileges injects malicious script into the configuration parameters [1].

Exploitation

An attacker must have administrative access to the device to exploit this stored XSS vulnerability. Once authenticated, the attacker can inject a malicious script via the web interface, which is then stored and executed when other administrators view the affected page [1]. The attack vector is local (AV:L) and requires high privileges, but does not require user interaction [1].

Impact

Successful exploitation allows an attacker to execute arbitrary HTML and JavaScript in the context of the affected web interface, potentially leading to disclosure of sensitive information and compromise of the device's configuration [1]. The CVSS v3 vector indicates high impact on confidentiality and integrity, but no impact on availability [1].

Mitigation

NETGEAR has released firmware version 2.3.5.30 to fix this vulnerability. Users of RBR50, RBS50, and RBK50 should upgrade to this version immediately [1]. No workaround is provided; the only mitigation is to install the latest firmware [1].