Share:

CVE-2020-26902

Critical 8.8

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK852 before 3.2.15.25, RBR850 before 3.2.15.25, and RBS850 before 3.2.15.25.

Published October 9, 2020.

Affected software

Netgear Rbr850 Firmware

Netgear Rbk752 Firmware

Netgear Rbr750 Firmware

Netgear Rbs850 Firmware

Netgear Rbs750 Firmware

Netgear Rbk852 Firmware

Get alerts for Netgear Rbr850 Firmware

Reference links

https://kb.netgear.com/000062352/Security-Advisory-for-Pre-Authentication-Command-Injection-on-Some-WiFi-Systems-PSV-2020-0041