CVE-2020-35229

The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers (with access to network traffic) to effectively gain administrative privileges.
Configurations

Configuration 1


Information

Published : 2021-03-10 07:15

Updated : 2021-03-17 08:41


NVD link : CVE-2020-35229

Mitre link : CVE-2020-35229

Products Affected
CWE
CWE-384

Session Fixation