First published: Wed Mar 10 2021(Updated: )
The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear Gs116e Firmware | =2.6.0.43 | |
Netgear Gs116e | =v2 | |
Netgear Jgs516pe Firmware | =2.6.0.43 | |
NETGEAR JGS516PE |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2020-35225.
The severity level of CVE-2020-35225 is medium with a score of 6.8.
NETGEAR JGS516PE and GS116Ev2 v2.6.0.43 devices are affected by CVE-2020-35225.
CVE-2020-35225 could potentially allow denial of service attacks.
Please refer to the official reference for information on available fixes for CVE-2020-35225: https://research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches/