VYPR

JGS516PE

by Netgear

CVEs (10)

  • CVE-2020-26919CriKEVOct 9, 2020
    risk 0.80cvss 9.8epss 0.57

    NETGEAR JGS516PE devices before 2.6.0.43 are affected by lack of access control at the function level.

  • CVE-2020-35231HigMar 10, 2021
    risk 0.57cvss 8.8epss 0.01

    The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the device.

  • CVE-2020-35801HigDec 30, 2020
    risk 0.54cvss 8.3epss 0.02

    Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. A TFTP server was found to be active by default. It allows remote…

  • CVE-2020-35782HigDec 30, 2020
    risk 0.53cvss 8.1epss 0.02

    Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. The TFTP firmware update mechanism does not properly implement firmware…

  • CVE-2020-35225MedMar 10, 2021
    risk 0.44cvss 6.8epss 0.01

    The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks.

  • CVE-2020-35224MedMar 10, 2021
    risk 0.42cvss 6.5epss 0.01

    A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote unauthenticated attackers to force a device reboot.

  • CVE-2020-35783MedDec 30, 2020
    risk 0.42cvss 6.5epss 0.02

    Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, GS116Ev2 before 2.6.0.48, JGS524Ev2 before 2.6.0.48, and JGS524PE before 2.6.0.48. The NSDP protocol version allows unauthenticated remote attackers to…

  • CVE-2017-18862MedApr 28, 2020
    risk 0.42cvss 6.5epss 0.01

    Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE before 2017-05-11, GS108Ev3 before 2017-05-11, GS108PEv3 before 2017-05-11,…

  • CVE-2020-35784MedDec 30, 2020
    risk 0.40cvss 6.2epss 0.01

    Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, and GS116Ev2 before 2.6.0.48.

  • CVE-2020-11791MedApr 15, 2020
    risk 0.40cvss 6.1epss 0.01

    NETGEAR JGS516PE devices before 2.6.0.43 are affected by reflected XSS.