Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Gs116e_firmware
(Netgear)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 18 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-03-10 | CVE-2020-35228 | A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject arbitrary web script or HTML via the language parameter. | Gs116e_firmware, Jgs516pe_firmware | 4.8 | ||
| 2021-03-10 | CVE-2020-35229 | The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers (with access to network traffic) to effectively gain administrative privileges. | Gs116e_firmware, Jgs516pe_firmware | 8.8 | ||
| 2021-03-10 | CVE-2020-35230 | Multiple integer overflow parameters were found in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices. Most of the integer parameters sent through the web server can be abused to cause a denial of service attack. | Gs116e_firmware, Jgs516pe_firmware | 6.8 | ||
| 2021-03-10 | CVE-2020-35231 | The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the device. | Gs116e_firmware, Jgs516pe_firmware | 8.8 | ||
| 2021-03-10 | CVE-2020-35233 | The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a denial of service attack. | Gs116e_firmware, Jgs516pe_firmware | 6.5 | ||
| 2020-04-15 | CVE-2019-20658 | Certain NETGEAR devices are affected by disclosure of sensitive information. This affects FS728TLP before 1.0.1.26, GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS108Ev3 before 2.06.08, GS108PEv3 before 2.06.08, GS110EMX before 1.0.1.4, GS116Ev2 before 2.6.0.35, GS408EPP before 1.0.0.15, GS808E before 1.7.0.7, GS810EMX before 1.7.1.1, GS908E before 1.7.0.3, GSS108E before 1.6.0.4, GSS108EPP before 1.0.0.15, GSS116E before 1.6.0.9, JGS516PE before 2.6.0.35, JGS524Ev2 before 2.6.0.35,... | Fs728tlp_firmware, Gs105e_firmware, Gs105pe_firmware, Gs108e_firmware, Gs108pe_firmware, Gs110emx_firmware, Gs116e_firmware, Gs408epp_firmware, Gs808e_firmware, Gs810emx_firmware, Gs908e_firmware, Gss108e_firmware, Gss108epp_firmware, Gss116e_firmware, Jgs516pe_firmware, Jgs524e_firmware, Jgs524pe_firmware, Xs512em_firmware, Xs708e_firmware, Xs716e_firmware, Xs724em_firmware | 6.5 | ||
| 2020-04-28 | CVE-2017-18862 | Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE before 2017-05-11, GS108Ev3 before 2017-05-11, GS108PEv3 before 2017-05-11, GS116Ev2 before 2017-05-11, GSS108E before 2017-05-11, GSS116E before 2017-05-11, XS708Ev2 before 2017-05-11, and XS716E before 2017-05-11. | Gs105e_firmware, Gs105pe_firmware, Gs108e_firmware, Gs108pe_firmware, Gs116e_firmware, Gss108e_firmware, Gss116e_firmware, Jgs516pe_firmware, Jgs524e_firmware, Jgs524pe_firmware, Xs708e_firmware, Xs716e_firmware | N/A | ||
| 2020-04-15 | CVE-2019-20676 | Certain NETGEAR devices are affected by lack of access control at the function level. This affects FS728TLP before 1.0.1.26, GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS108Ev3 before 2.06.08, GS108PEv3 before 2.06.08, GS110EMX before 1.0.1.4, GS116Ev2 before 2.6.0.35, GS408EPP before 1.0.0.15, GS724TPv2 before 1.1.1.29, GS808E before 1.7.0.7, GS810EMX before 1.7.1.1, GS908E before 1.7.0.3, GSS108E before 1.6.0.4, GSS108EPP before 1.0.0.15, GSS116E before 1.6.0.9, JGS516PE before... | Fs728tlp_firmware, Gs105e_firmware, Gs105pe_firmware, Gs108e_firmware, Gs108pe_firmware, Gs110emx_firmware, Gs116e_firmware, Gs408epp_firmware, Gs724tp_firmware, Gs808e_firmware, Gs810emx_firmware, Gs908e_firmware, Gss108e_firmware, Gss108epp_firmware, Gss116e_firmware, Jgs516pe_firmware, Jgs524e_firmware, Jgs524pe_firmware, Xs512em_firmware, Xs708e_firmware, Xs716e_firmware, Xs724em_firmware | N/A |