CVE-2019-20690
HIGHNETGEAR D6200 D7000 R6020 R6080 R6120 R6220 WNR2020 WNR614 - Authentication Bypass
Title source: llmDescription
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.30, D7000 before 1.0.1.66, R6020 before 1.0.0.34, R6080 before 1.0.0.34, R6120 before 1.0.0.44, R6220 before 1.1.0.68, WNR2020 before 1.1.0.54, and WNR614 before 1.1.0.54.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kb.netgear.com/000061449/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-and-Gateways-PSV-2018-0073
Scores
CVSS v3
8.8
EPSS
0.0010
EPSS Percentile
26.5%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (8)
netgear/d6200_firmware
< 1.1.00.30
netgear/d7000_firmware
< 1.0.1.66
netgear/r6020_firmware
< 1.0.0.34
netgear/r6080_firmware
< 1.0.0.34
netgear/r6120_firmware
< 1.0.0.44
netgear/r6220_firmware
< 1.1.0.68
netgear/wnr2020_firmware
< 1.1.0.54
netgear/wnr614_firmware
< 1.1.0.54
Published
Apr 16, 2020
Tracked Since
Feb 18, 2026