CVE-2020-35786

EUVD-2020-23441
NETGEAR R7800 devices before 1.0.2.74 are affected by a buffer overflow by an authenticated user.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.5 MEDIUM
ADJACENT_NETWORK
LOW
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
mitreCNA
4.5 MEDIUM
ADJACENT_NETWORK
LOW
HIGH
CVSS:3.1/AC:L/AV:A/A:H/C:N/I:N/PR:H/S:U/UI:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
Affected Products (NVD)
VendorProductVersion
netgearr7800_firmware
𝑥
< 1.0.2.74
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://kb.netgear.com/000062718/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-R7800-PSV-2020-0218
https://kb.netgear.com/000062718/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-R7800-PSV-2020-0218