1. Home
  2. CVE Database
  3. CVE-2020-26921
HIGH · 8.3

CVE-2020-26921

Certain NETGEAR devices are affected by authentication bypass. This affects GS110EMX before 1.0.1.7, GS810EMX before 1.7.1.3, XS512EM before 1.0.1.3, and XS724EM before 1.0.1.3.

Vulnerability Description

Certain NETGEAR devices are affected by authentication bypass. This affects GS110EMX before 1.0.1.7, GS810EMX before 1.7.1.3, XS512EM before 1.0.1.3, and XS724EM before 1.0.1.3.

CVSS Score

8.3

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
NetgearGs110Emx Firmware< 1.0.1.7
NetgearGs110Emx-
NetgearGs810Emx Firmware< 1.7.1.3
NetgearGs810Emx-
NetgearXs512Em Firmware< 1.0.1.3
NetgearXs512Em-
NetgearXs724Em Firmware< 1.0.1.3
NetgearXs724Em-

Related Weaknesses (CWE)

CWE-287

References

FAQ

What is CVE-2020-26921?

CVE-2020-26921 is a vulnerability with a CVSS score of 8.3 (HIGH). Certain NETGEAR devices are affected by authentication bypass. This affects GS110EMX before 1.0.1.7, GS810EMX before 1.7.1.3, XS512EM before 1.0.1.3, and XS724EM before 1.0.1.3.

How severe is CVE-2020-26921?

CVE-2020-26921 has been rated HIGH with a CVSS base score of 8.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-26921?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear Gs110Emx Firmware, Netgear Gs110Emx, Netgear Gs810Emx Firmware, Netgear Gs810Emx, Netgear Xs512Em Firmware.