Vulnerabilities > CVE-2019-19964 - Unspecified vulnerability in Netgear Gs728Tps Firmware

CVSS 2.7 - LOW

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

netgear

NVD

Published: 2020-03-23

Updated: 2020-08-24

Summary

On NETGEAR GS728TPS devices through 5.3.0.35, a remote attacker having network connectivity to the web-administration panel can access part of the web panel, bypassing authentication.

Vulnerable Configurations

Part	Description	Count
OS	Netgear Netgear Gs728Tps Firmware - Netgear Gs728Tps Firmware 5.3.0.15 Netgear Gs728Tps Firmware 5.3.0.17 Netgear Gs728Tps Firmware 5.3.0.25 Netgear Gs728Tps Firmware 5.3.0.26 Netgear Gs728Tps Firmware 5.3.0.29 Netgear Gs728Tps Firmware 5.3.0.31 Netgear Gs728Tps Firmware 5.3.0.35	8
Hardware	Netgear Netgear Gs728Tps -	1

References

https://kb.netgear.com/000061738/Security-Advisory-for-Missing-Function-Level-Access-Control-on-GS728TPS-PSV-2020-0012