1. Home
  2. CVE Database
  3. CVE-2019-20751
MEDIUM · 6.8

CVE-2019-20751

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.60, DM200 before 1.0.0.61, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1...

Vulnerability Description

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.60, DM200 before 1.0.0.61, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1.76, EX6150v2 before 1.0.1.76, EX6200v2 before 1.0.1.72, EX8000 before 1.0.1.180, R7800 before 1.0.2.52, R8900 before 1.0.4.26, R9000 before 1.0.4.26, WN2000RPTv3 before 1.0.1.32, WN3000RPv2 before 1.0.0.68, WN3000RPv3 before 1.0.2.70, WN3100RPv2 before 1.0.0.66, WNDR4300v2 before 1.0.0.58, WNDR4500v3 before 1.0.0.58, and WNR2000v5 before 1.0.0.68.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
NetgearD6100 Firmware< 1.0.0.60
NetgearD6100-
NetgearDm200 Firmware< 1.0.0.61
NetgearDm200-
NetgearEx2700 Firmware< 1.0.1.48
NetgearEx2700-
NetgearEx6100 Firmware< 1.0.1.76
NetgearEx6100v2
NetgearEx6150 Firmware< 1.0.1.76
NetgearEx6150v2
NetgearEx6200 Firmware< 1.0.1.72
NetgearEx6200v2
NetgearEx8000 Firmware< 1.0.1.180
NetgearEx8000-
NetgearR7800 Firmware< 1.0.2.52
NetgearR7800-
NetgearR8900 Firmware< 1.0.4.26
NetgearR8900-
NetgearR9000 Firmware< 1.0.4.26
NetgearR9000-

Related Weaknesses (CWE)

CWE-787

References

FAQ

What is CVE-2019-20751?

CVE-2019-20751 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.60, DM200 before 1.0.0.61, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1...

How severe is CVE-2019-20751?

CVE-2019-20751 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-20751?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear D6100 Firmware, Netgear D6100, Netgear Dm200 Firmware, Netgear Dm200, Netgear Ex2700 Firmware.