Advisory Published
Updated

CVE-2019-20658

First published: Wed Apr 15 2020(Updated: )

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects FS728TLP before 1.0.1.26, GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS108Ev3 before 2.06.08, GS108PEv3 before 2.06.08, GS110EMX before 1.0.1.4, GS116Ev2 before 2.6.0.35, GS408EPP before 1.0.0.15, GS808E before 1.7.0.7, GS810EMX before 1.7.1.1, GS908E before 1.7.0.3, GSS108E before 1.6.0.4, GSS108EPP before 1.0.0.15, GSS116E before 1.6.0.9, JGS516PE before 2.6.0.35, JGS524Ev2 before 2.6.0.35, JGS524PE before 2.6.0.35, XS512EM before 1.0.1.1, XS708Ev2 before 1.6.0.23, XS716E before 1.6.0.23, and XS724EM before 1.0.1.1.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Netgear Fs728tlp Firmware<1.0.1.26
Netgear Fs728tlp
Netgear Gs105e Firmware<1.6.0.4
Netgear Gs105e=v2
Netgear Gs105pe Firmware<1.6.0.4
Netgear Gs105pe
Netgear Gs108e Firmware<2.06.08
Netgear Gs108e=v3
Netgear Gs108pe Firmware<2.06.08
NETGEAR GS108PE=v3
Netgear Gs110emx Firmware<1.0.1.4
Netgear Gs110emx
Netgear Gs116e Firmware<2.6.0.35
Netgear Gs116e=v2
Netgear Gs408epp Firmware<1.0.0.15
Netgear Gs408epp
Netgear Gs808e Firmware<1.7.0.7
NETGEAR GS808E
Netgear Gs810emx Firmware<1.7.1.1
NETGEAR GS810EMX
Netgear Gs908e Firmware<1.7.0.3
Netgear Gs908e
Netgear Gss108e Firmware<1.6.0.4
Netgear Gss108e
Netgear Gss108epp Firmware<1.0.0.15
Netgear Gss108epp
Netgear Gss116e Firmware<1.6.0.9
Netgear Gss116e
Netgear Jgs516pe Firmware<2.6.0.35
NETGEAR JGS516PE
Netgear Jgs524e Firmware<2.6.0.35
Netgear Jgs524e=v2
Netgear Jgs524pe Firmware<2.6.0.35
Netgear Jgs524pe
Netgear Xs512em Firmware<1.0.1.1
Netgear Xs512em
Netgear Xs708e Firmware<1.6.0.23
Netgear Xs708e=v2
Netgear Xs716e Firmware<1.6.0.23
Netgear Xs716e
Netgear Xs724em Firmware<1.0.1.1
Netgear Xs724em

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the vulnerability ID for this vulnerability?

    The vulnerability ID for this vulnerability is CVE-2019-20658.

  • Which NETGEAR devices are affected by this vulnerability?

    This vulnerability affects FS728TLP before 1.0.1.26, GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS108Ev3 before 2.06.08, GS108PEv3 before 2.06.08, GS110EMX before 1.0.1.4, GS116Ev2 before 2.6.0.35, GS408EPP before 1.0.0.15, and GS808E.

  • What is the severity of CVE-2019-20658?

    The severity of CVE-2019-20658 is medium with a severity value of 6.5.

  • How can I fix the vulnerability on my NETGEAR device?

    To fix this vulnerability, you should update your device firmware to the latest version provided by NETGEAR.

  • Where can I find more information about CVE-2019-20658?

    You can find more information about CVE-2019-20658 on the NETGEAR knowledge base at this reference link: https://kb.netgear.com/000061481/Security-Advisory-for-Sensitive-Information-Disclosure-on-Some-Switches-PSV-2018-0612.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203