Vulnerabilities > Netgear > Jgs516Pe Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-10 | CVE-2020-35233 | Resource Exhaustion vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a denial of service attack. | 6.5 |
| 2021-03-10 | CVE-2020-35230 | Integer Overflow or Wraparound vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware Multiple integer overflow parameters were found in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices. | 6.8 |
| 2021-03-10 | CVE-2020-35228 | Cross-site Scripting vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject arbitrary web script or HTML via the language parameter. | 4.8 |
| 2021-03-10 | CVE-2020-35225 | Classic Buffer Overflow vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks. | 6.8 |
| 2021-03-10 | CVE-2020-35224 | Classic Buffer Overflow vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote unauthenticated attackers to force a device reboot. | 6.5 |
| 2020-12-30 | CVE-2020-35783 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by lack of access control at the function level. low complexity netgear | 6.5 |
| 2020-04-28 | CVE-2017-18862 | Improper Authentication vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 6.5 |
| 2020-04-15 | CVE-2019-20676 | Missing Authorization vulnerability in Netgear products Certain NETGEAR devices are affected by lack of access control at the function level. | 6.0 |
| 2020-04-15 | CVE-2019-20658 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. low complexity netgear | 6.5 |
| 2020-04-15 | CVE-2020-11791 | Cross-site Scripting vulnerability in Netgear Jgs516Pe Firmware 2.6.0.35 NETGEAR JGS516PE devices before 2.6.0.43 are affected by reflected XSS. | 6.1 |