CVE-2020-13245
Severity Score
5.9
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Certain NETGEAR devices are affected by Missing SSL Certificate Validation. This affects R7000 1.0.9.6_1.2.19 through 1.0.11.100_10.2.10, and possibly R6120, R7800, R6220, R8000, R6350, R9000, R6400, RAX120, R6400v2, RBR20, R6800, XR300, R6850, XR500, and R7000P.
Determinados dispositivos NETGEAR están afectados por una falta de comprobación del certificado SSL. Esto afecta a R7000 versiones 1.0.9.6_1.2.19 hasta 1.0.11.100_10.2.10, y posiblemente a R6120, R7800, R6220, R8000, R6350, R9000, R6400, RAX120, R6400v2, RBR20, R6800, XR300, R6850, XR500 y R7000P.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-05-20 CVE Reserved
- 2020-05-28 CVE Published
- 2024-03-17 EPSS Updated
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-295: Improper Certificate Validation
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://iot-lab-fh-ooe.github.io/netgear_update_vulnerability | 2024-08-04 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.netgear.com/about/security | 2020-05-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Netgear Search vendor "Netgear" | R6120 Firmware Search vendor "Netgear" for product "R6120 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R6120 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R6120 Search vendor "Netgear" for product "R6120" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R6220 Firmware Search vendor "Netgear" for product "R6220 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R6220 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R6220 Search vendor "Netgear" for product "R6220" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R6350 Firmware Search vendor "Netgear" for product "R6350 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R6350 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R6350 Search vendor "Netgear" for product "R6350" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R6400 Firmware Search vendor "Netgear" for product "R6400 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R6400 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R6400 Search vendor "Netgear" for product "R6400" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R6400 Firmware Search vendor "Netgear" for product "R6400 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R6400 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R6400 Search vendor "Netgear" for product "R6400" | v2 Search vendor "Netgear" for product "R6400" and version "v2" | - |
Safe
|
| Netgear Search vendor "Netgear" | R6800 Firmware Search vendor "Netgear" for product "R6800 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R6800 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R6800 Search vendor "Netgear" for product "R6800" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R6850 Firmware Search vendor "Netgear" for product "R6850 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R6850 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R6850 Search vendor "Netgear" for product "R6850" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R7000p Firmware Search vendor "Netgear" for product "R7000p Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R7000p Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R7000p Search vendor "Netgear" for product "R7000p" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R7800 Firmware Search vendor "Netgear" for product "R7800 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R7800 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R7800 Search vendor "Netgear" for product "R7800" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R8000 Firmware Search vendor "Netgear" for product "R8000 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R8000 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R8000 Search vendor "Netgear" for product "R8000" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | R9000 Firmware Search vendor "Netgear" for product "R9000 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "R9000 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | R9000 Search vendor "Netgear" for product "R9000" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Rax120 Firmware Search vendor "Netgear" for product "Rax120 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "Rax120 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | Rax120 Search vendor "Netgear" for product "Rax120" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Rbr20 Firmware Search vendor "Netgear" for product "Rbr20 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "Rbr20 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | Rbr20 Search vendor "Netgear" for product "Rbr20" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Xr300 Firmware Search vendor "Netgear" for product "Xr300 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "Xr300 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | Xr300 Search vendor "Netgear" for product "Xr300" | - | - |
Safe
|
| Netgear Search vendor "Netgear" | Xr500 Firmware Search vendor "Netgear" for product "Xr500 Firmware" | >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100 Search vendor "Netgear" for product "Xr500 Firmware" and version " >= v1.0.9.6_1.2.19 <= v1.0.11.100_10.2.100" | - |
Affected
| in | Netgear Search vendor "Netgear" | Xr500 Search vendor "Netgear" for product "Xr500" | - | - |
Safe
|