CVE-2020-35785
HIGHNETGEAR DGN2200v1 < 1.0.0.60 - Improper Authentication
Title source: llmDescription
NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication (aka PSV-2020-0363, PSV-2020-0364, and PSV-2020-0365).
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://kb.netgear.com/000062646/Security-Advisory-for-Multiple-HTTPd-Authentication-Vulnerabilities-on-DGN2200v1
Scores
CVSS v3
8.3
EPSS
0.0013
EPSS Percentile
31.5%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (1)
netgear/dgn2200_firmware
< 1.0.0.60
Published
Dec 30, 2020
Tracked Since
Feb 18, 2026