CWE
120 119
Advisory Published
Updated

CVE-2019-20699: Buffer Overflow

First published: Thu Apr 16 2020(Updated: )

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS408EPP before 1.0.0.15, GS808E before 1.7.0.7, GS908E before 1.7.0.3, GSS108E before 1.6.0.4, and GSS108EPP before 1.0.0.15.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Netgear Gs105e Firmware<1.6.0.4
Netgear Gs105e=v2
Netgear Gs105pe Firmware<1.6.0.4
Netgear Gs105pe
Netgear Gs408epp Firmware<1.0.0.15
Netgear Gs408epp
Netgear Gs808e Firmware<1.7.0.7
NETGEAR GS808E
Netgear Gs908e Firmware<1.7.0.3
Netgear Gs908e
Netgear Gss108e Firmware<1.6.0.4
Netgear Gss108e
Netgear Gss108epp Firmware<1.0.0.15
Netgear Gss108epp

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the vulnerability ID of this vulnerability?

    The vulnerability ID is CVE-2019-20699.

  • Which NETGEAR devices are affected by this vulnerability?

    GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS408EPP before 1.0.0.15, GS808E before 1.7.0.7, GS908E before 1.7.0.3, GSS108E before 1.6.0.4, and GSS108EPP before 1.0.0.15.

  • What is the severity of CVE-2019-20699?

    The severity of CVE-2019-20699 is critical with a CVSS score of 9.8.

  • How can an attacker exploit this vulnerability?

    An unauthenticated attacker can exploit this vulnerability by performing a buffer overflow.

  • How can I fix CVE-2019-20699 on my affected NETGEAR devices?

    To fix CVE-2019-20699, you need to update your NETGEAR devices to the latest firmware version provided by NETGEAR.

  • Where can I find more information about this vulnerability?

    You can find more information about this vulnerability in the security advisory published by NETGEAR.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203