CVE-2019-20691: CSRF
First published: Thu Apr 16 2020(Updated: )
Certain NETGEAR devices are affected by CSRF. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.24, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, and WN2500RPv2 before 1.0.1.54.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear D3600 Firmware | <1.0.0.72 | |
| NETGEAR D3600 | ||
| Netgear D6000 Firmware | <1.0.0.72 | |
| Netgear D6000 | ||
| Netgear Ex3700 Firmware | <1.0.0.70 | |
| Netgear EX3700 | ||
| Netgear Ex3800 Firmware | <1.0.0.70 | |
| Netgear Ex3800 | ||
| Netgear Ex6000 Firmware | <1.0.0.30 | |
| Netgear Ex6000 | ||
| Netgear Ex6100 Firmware | <1.0.2.24 | |
| Netgear EX6100 | ||
| Netgear Ex6120 Firmware | <1.0.0.40 | |
| Netgear EX6120 | ||
| Netgear Ex6130 Firmware | <1.0.0.22 | |
| Netgear Ex6130 | ||
| Netgear Ex6150 Firmware | <1.0.0.42 | |
| Netgear Ex6150 | =v1 | |
| Netgear Ex6200 Firmware | <1.0.3.88 | |
| Netgear EX6200 | ||
| Netgear Ex7000 Firmware | <1.0.0.66 | |
| NETGEAR EX7000 | ||
| Netgear Wn2500rp Firmware | <1.0.1.54 | |
| Netgear Wn2500rp | =v2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
Which devices are affected by CSRF vulnerability CVE-2019-20691?
The CSRF vulnerability CVE-2019-20691 affects certain NETGEAR devices, including D3600, D6000, EX3700, EX3800, EX6000, EX6100, EX6120, EX6130, EX6150v1, EX6200, EX7000, and WN2500rp.
What is the severity of CSRF vulnerability CVE-2019-20691?
The severity of CSRF vulnerability CVE-2019-20691 is high, with a severity value of 8.8.
How can I fix CSRF vulnerability CVE-2019-20691?
To fix CSRF vulnerability CVE-2019-20691, it is recommended to update the firmware of the affected NETGEAR devices to the latest available version.
Where can I find more information about CSRF vulnerability CVE-2019-20691?
More information about CSRF vulnerability CVE-2019-20691 can be found in the Netgear Security Advisory: https://kb.netgear.com/000061448/Security-Advisory-for-Cross-Site-Request-Forgery-on-Some-Gateways-and-Extenders-PSV-2017-2747
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/softwarecombine
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/netgear
- canonical/netgear d3600 firmware
- canonical/netgear d3600
- canonical/netgear d6000 firmware
- canonical/netgear d6000
- canonical/netgear ex3700 firmware
- canonical/netgear ex3700
- canonical/netgear ex3800 firmware
- canonical/netgear ex3800
- canonical/netgear ex6000 firmware
- canonical/netgear ex6000
- canonical/netgear ex6100 firmware
- canonical/netgear ex6100
- canonical/netgear ex6120 firmware
- canonical/netgear ex6120
- canonical/netgear ex6130 firmware
- canonical/netgear ex6130
- canonical/netgear ex6150 firmware
- canonical/netgear ex6150
- version/netgear ex6150/v1
- canonical/netgear ex6200 firmware
- canonical/netgear ex6200
- canonical/netgear ex7000 firmware
- canonical/netgear ex7000
- canonical/netgear wn2500rp firmware
- canonical/netgear wn2500rp
- version/netgear wn2500rp/v2