CVE-2020-26898
https://notcve.org/view.php?id=CVE-2020-26898
NETGEAR RAX40 devices before 1.0.3.80 are affected by incorrect configuration of security settings. Los dispositivos NETGEAR RAX40 versiones anteriores a 1.0.3.80, están afectados por una configuración incorrecta de los ajustes de seguridad • https://kb.netgear.com/000062356/Security-Advisory-for-Security-Misconfiguration-on-RAX40-PSV-2019-0267 •
CVE-2019-20647
https://notcve.org/view.php?id=CVE-2019-20647
NETGEAR RAX40 devices before 1.0.3.64 are affected by denial of service. Los dispositivos NETGEAR RAX40 versiones anteriores a 1.0.3.64, están afectados por una denegación de servicio. • https://kb.netgear.com/000061495/Security-Advisory-for-Denial-of-Service-on-RAX40-PSV-2019-0210 •
CVE-2019-20646
https://notcve.org/view.php?id=CVE-2019-20646
NETGEAR RAX40 devices before 1.0.3.64 are affected by disclosure of administrative credentials. Los dispositivos NETGEAR RAX40 versiones anteriores a 1.0.3.64, están afectados por una divulgación de credenciales administrativas. • https://kb.netgear.com/000061496/Security-Advisory-for-Admin-Credential-Disclosure-on-RAX40-PSV-2019-0237 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2019-20645
https://notcve.org/view.php?id=CVE-2019-20645
NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS. Los dispositivos NETGEAR RAX40 versiones anteriores a 1.0.3.62, están afectados por una vulnerabilidad de tipo XSS almacenado. • https://kb.netgear.com/000061497/Security-Advisory-for-Stored-Cross-Site-Scripting-on-RAX40-PSV-2019-0243 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2019-20644
https://notcve.org/view.php?id=CVE-2019-20644
NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS. Los dispositivos NETGEAR RAX40 versiones anteriores a 1.0.3.62, están afectados por una vulnerabilidad de tipo XSS almacenado. • https://kb.netgear.com/000061498/Security-Advisory-for-Stored-Cross-Site-Scripting-on-RAX40-PSV-2019-0246 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •