Certain NETGEAR devices are affected by stored XSS. This affects RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and RBK50 before 2.3.5.30.
References
Link | Resource |
---|---|
https://kb.netgear.com/000061478/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-WiFi-Systems-PSV-2018-0561 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Information
Published : 2020-04-15 12:15
Updated : 2020-04-20 10:05
NVD link : CVE-2019-20661
Mitre link : CVE-2019-20661
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
netgear
- rbk50_firmware
- rbr50_firmware
- rbr50
- rbs50_firmware
- rbk50
- rbs50