Vulnerabilities > CVE-2019-19964 - Unspecified vulnerability in Netgear Gs728Tps Firmware

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

netgear

NVD

Published: 2020-03-23

Updated: 2020-08-24

Summary

On NETGEAR GS728TPS devices through 5.3.0.35, a remote attacker having network connectivity to the web-administration panel can access part of the web panel, bypassing authentication.

Vulnerable Configurations

Part	Description	Count
OS	Netgear Netgear Gs728Tps Firmware *	1
Hardware	Netgear Netgear Gs728Tps -	1

References

https://kb.netgear.com/000061738/Security-Advisory-for-Missing-Function-Level-Access-Control-on-GS728TPS-PSV-2020-0012