CVE-2019-20650

EUVD-2019-11189
Certain NETGEAR devices are affected by denial of service. This affects R8900 before 1.0.5.2, R9000 before 1.0.5.2, XR500 before 2.3.2.56, and XR700 before 1.0.1.20.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
5.3 MEDIUM
ADJACENT_NETWORK
HIGH
NONE
CVSS:3.0/AC:H/AV:A/A:H/C:N/I:N/PR:N/S:U/UI:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 38%
Affected Products (NVD)
VendorProductVersion
netgearr8900_firmware
𝑥
< 1.0.5.2
netgearr9000_firmware
𝑥
< 1.0.5.2
netgearxr500_firmware
𝑥
< 2.3.2.56
netgearxr700_firmware
𝑥
< 1.0.1.20
𝑥
= Vulnerable software versions
References
https://kb.netgear.com/000061492/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2019-0197
https://kb.netgear.com/000061492/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2019-0197