CVE-2019-20694

EUVD-2019-11233
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects GS728TP before 6.0.0.48, GS728TPPv2 before 6.0.0.48, GS728TPv2 before 6.0.0.48, GS752TPP before 6.0.0.48, and GS752TPv2 before 6.0.0.48.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
mitreCNA
5.3 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AC:H/AV:N/A:N/C:H/I:N/PR:N/S:U/UI:R
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
netgeargs728tp_firmware
𝑥
< 6.0.0.48
netgeargs728tpp_firmware
𝑥
< 6.0.0.48
netgeargs728tp_firmware
𝑥
< 6.0.0.48
netgeargs752tpp_firmware
𝑥
< 6.0.0.48
netgeargs752tp_firmware
𝑥
< 6.0.0.48
𝑥
= Vulnerable software versions
References
https://kb.netgear.com/000061235/Security-Advisory-for-Sensitive-Information-Disclosure-on-Some-Switches-PSV-2019-0059
https://kb.netgear.com/000061235/Security-Advisory-for-Sensitive-Information-Disclosure-on-Some-Switches-PSV-2019-0059