CVE-2020-35805 : What You Need to Know
Learn about CVE-2020-35805 affecting NETGEAR devices with stored XSS vulnerability. Find out impacted systems, exploitation details, and mitigation steps.
Certain NETGEAR devices are affected by stored XSS vulnerability.
Understanding CVE-2020-35805
What is CVE-2020-35805?
Stored XSS vulnerability impacting various NETGEAR devices.
The Impact of CVE-2020-35805
Stored XSS vulnerability affects confidentiality and integrity with a CVSS base score of 6.1.
Technical Details of CVE-2020-35805
Vulnerability Description
- Stored XSS vulnerability in NETGEAR devices
Affected Systems and Versions
- D7800 before 1.0.1.56
- R7500v2 before 1.0.3.46
- R7800 before 1.0.2.74
- R8900 before 1.0.4.28
- R9000 before 1.0.4.28
- RAX120 before 1.0.0.78
- Several other models before specific versions
Exploitation Mechanism
- Attack complexity: Low
- Attack vector: Adjacent network
- Privileges required: High
Mitigation and Prevention
Immediate Steps to Take
- Update affected devices to the latest firmware
- Monitor for any suspicious activities
Long-Term Security Practices
- Regularly update firmware and security patches
- Implement network segmentation and access controls
Patching and Updates
- Refer to the vendor's security advisory for patch details