CVE-2019-20694

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects GS728TP before 6.0.0.48, GS728TPPv2 before 6.0.0.48, GS728TPv2 before 6.0.0.48, GS752TPP before 6.0.0.48, and GS752TPv2 before 6.0.0.48.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
mitreCNA
5.3 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AC:H/AV:N/A:N/C:H/I:N/PR:N/S:U/UI:R
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 54%
VendorProductVersion
netgeargs728tp_firmware
𝑥
< 6.0.0.48
netgeargs728tpp_firmware
𝑥
< 6.0.0.48
netgeargs728tp_firmware
𝑥
< 6.0.0.48
netgeargs752tpp_firmware
𝑥
< 6.0.0.48
netgeargs752tp_firmware
𝑥
< 6.0.0.48
𝑥
= Vulnerable software versions
References
https://kb.netgear.com/000061235/Security-Advisory-for-Sensitive-Information-Disclosure-on-Some-Switches-PSV-2019-0059
https://kb.netgear.com/000061235/Security-Advisory-for-Sensitive-Information-Disclosure-on-Some-Switches-PSV-2019-0059