CVE-2020-13245
First published: Thu May 28 2020(Updated: )
Certain NETGEAR devices are affected by Missing SSL Certificate Validation. This affects R7000 1.0.9.6_1.2.19 through 1.0.11.100_10.2.10, and possibly R6120, R7800, R6220, R8000, R6350, R9000, R6400, RAX120, R6400v2, RBR20, R6800, XR300, R6850, XR500, and R7000P.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NETGEAR R6120 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R6120 firmware | ||
| NETGEAR R6220 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R6220 firmware | ||
| NETGEAR R6350 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R6350 firmware | ||
| NETGEAR R6400 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R6400 firmware | ||
| NETGEAR R6400 firmware | =v2 | |
| NETGEAR R6800 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R6800 firmware | ||
| NETGEAR R6850 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| Netgear R6850 | ||
| NETGEAR R7000P firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| Netgear R7000P | ||
| NETGEAR R7800 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R7800 | ||
| NETGEAR R8000 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R8000 firmware | ||
| NETGEAR R9000 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR R9000 firmware | ||
| NETGEAR RAX120 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR RAX120 firmware | ||
| NETGEAR RBR20 | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR RBR20 | ||
| NETGEAR XR300 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| Netgear XR300 | ||
| NETGEAR XR500 firmware | >=v1.0.9.6_1.2.19<=v1.0.11.100_10.2.100 | |
| NETGEAR XR500 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-13245?
CVE-2020-13245 is a vulnerability that affects certain NETGEAR devices and allows attackers to bypass SSL certificate validation.
Which devices are affected by CVE-2020-13245?
CVE-2020-13245 affects NETGEAR devices R7000, R6120, R7800, R6220, R8000, R6350, R9000, R6400, RAX120, R6400v2, RBR20, R6800, XR300, R6850, XR500, and R7000P.
What is the severity of CVE-2020-13245?
The severity of CVE-2020-13245 is medium with a CVSS score of 5.9.
How can I fix CVE-2020-13245?
To fix CVE-2020-13245, ensure that your NETGEAR device is running the latest firmware version provided by the manufacturer.
Where can I find more information about CVE-2020-13245?
You can find more information about CVE-2020-13245 on the official NETGEAR website and the IoT Lab FH OOe GitHub page.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- vendor/netgear
- canonical/netgear r6120 firmware
- version/netgear r6120 firmware/v1.0.9.6_1.2.19
- version/netgear r6120 firmware/v1.0.11.100_10.2.100
- canonical/netgear r6220 firmware
- version/netgear r6220 firmware/v1.0.9.6_1.2.19
- version/netgear r6220 firmware/v1.0.11.100_10.2.100
- canonical/netgear r6350 firmware
- version/netgear r6350 firmware/v1.0.9.6_1.2.19
- version/netgear r6350 firmware/v1.0.11.100_10.2.100
- canonical/netgear r6400 firmware
- version/netgear r6400 firmware/v1.0.9.6_1.2.19
- version/netgear r6400 firmware/v1.0.11.100_10.2.100
- version/netgear r6400 firmware/v2
- canonical/netgear r6800 firmware
- version/netgear r6800 firmware/v1.0.9.6_1.2.19
- version/netgear r6800 firmware/v1.0.11.100_10.2.100
- canonical/netgear r6850 firmware
- version/netgear r6850 firmware/v1.0.9.6_1.2.19
- version/netgear r6850 firmware/v1.0.11.100_10.2.100
- canonical/netgear r6850
- canonical/netgear r7000p firmware
- version/netgear r7000p firmware/v1.0.9.6_1.2.19
- version/netgear r7000p firmware/v1.0.11.100_10.2.100
- canonical/netgear r7000p
- canonical/netgear r7800 firmware
- version/netgear r7800 firmware/v1.0.9.6_1.2.19
- version/netgear r7800 firmware/v1.0.11.100_10.2.100
- canonical/netgear r7800
- canonical/netgear r8000 firmware
- version/netgear r8000 firmware/v1.0.9.6_1.2.19
- version/netgear r8000 firmware/v1.0.11.100_10.2.100
- canonical/netgear r9000 firmware
- version/netgear r9000 firmware/v1.0.9.6_1.2.19
- version/netgear r9000 firmware/v1.0.11.100_10.2.100
- canonical/netgear rax120 firmware
- version/netgear rax120 firmware/v1.0.9.6_1.2.19
- version/netgear rax120 firmware/v1.0.11.100_10.2.100
- canonical/netgear rbr20
- version/netgear rbr20/v1.0.9.6_1.2.19
- version/netgear rbr20/v1.0.11.100_10.2.100
- canonical/netgear xr300 firmware
- version/netgear xr300 firmware/v1.0.9.6_1.2.19
- version/netgear xr300 firmware/v1.0.11.100_10.2.100
- canonical/netgear xr300
- canonical/netgear xr500 firmware
- version/netgear xr500 firmware/v1.0.9.6_1.2.19
- version/netgear xr500 firmware/v1.0.11.100_10.2.100