Vulnerabilities > Netgear > Gs108Pe Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-04-28 | CVE-2017-18862 | Improper Authentication vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 3.3 |
2020-04-15 | CVE-2019-20676 | Missing Authorization vulnerability in Netgear products Certain NETGEAR devices are affected by lack of access control at the function level. | 3.6 |
2020-04-15 | CVE-2019-20658 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 3.3 |
2014-07-07 | CVE-2014-2969 | Credentials Management vulnerability in Netgear Gs108Pe and Gs108Pe Firmware NETGEAR GS108PE Prosafe Plus switches with firmware 1.2.0.5 have a hardcoded password of debugpassword for the ntgruser account, which allows remote attackers to upload firmware or read or modify memory contents, and consequently execute arbitrary code, via a request to (1) produce_burn.cgi, (2) register_debug.cgi, or (3) bootcode_update.cgi. | 8.3 |