cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-35233,https://securityvulnerability.io/vulnerability/CVE-2020-35233,,"The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a denial of service attack.",Netgear,Gs116e Firmware,6.5,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2021-03-10T18:16:43.000Z,0
CVE-2020-35231,https://securityvulnerability.io/vulnerability/CVE-2020-35231,,The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the device.,Netgear,Gs116e Firmware,8.8,HIGH,0.0006799999973736703,false,,false,false,false,,,false,false,,2021-03-10T18:14:44.000Z,0
CVE-2020-35230,https://securityvulnerability.io/vulnerability/CVE-2020-35230,,Multiple integer overflow parameters were found in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices. Most of the integer parameters sent through the web server can be abused to cause a denial of service attack.,Netgear,Gs116e Firmware,6.8,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-03-10T18:11:54.000Z,0
CVE-2020-35229,https://securityvulnerability.io/vulnerability/CVE-2020-35229,,"The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers (with access to network traffic) to effectively gain administrative privileges.",Netgear,Gs116e Firmware,8.8,HIGH,0.000699999975040555,false,,false,false,false,,,false,false,,2021-03-10T18:10:56.000Z,0
CVE-2020-35228,https://securityvulnerability.io/vulnerability/CVE-2020-35228,,A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject arbitrary web script or HTML via the language parameter.,Netgear,Gs116e Firmware,4.8,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2021-03-10T18:10:13.000Z,0
CVE-2020-35227,https://securityvulnerability.io/vulnerability/CVE-2020-35227,,A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web panel) allows an attacker to inject IP addresses into the whitelist via the checkedList parameter to the delete command.,Netgear,Gs116e Firmware,7.2,HIGH,0.0007999999797903001,false,,false,false,false,,,false,false,,2021-03-10T18:05:54.000Z,0
CVE-2020-35226,https://securityvulnerability.io/vulnerability/CVE-2020-35226,,NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allow unauthenticated users to modify the switch DHCP configuration by sending the corresponding write request command.,Netgear,Gs116e Firmware,7.1,HIGH,0.0006200000061653554,false,,false,false,false,,,false,false,,2021-03-10T18:03:30.000Z,0
CVE-2020-35225,https://securityvulnerability.io/vulnerability/CVE-2020-35225,,"The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks.",Netgear,Gs116e Firmware,6.8,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-03-10T17:58:53.000Z,0
CVE-2020-35224,https://securityvulnerability.io/vulnerability/CVE-2020-35224,,A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote unauthenticated attackers to force a device reboot.,Netgear,Gs116e Firmware,6.5,MEDIUM,0.0008900000248104334,false,,false,false,false,,,false,false,,2021-03-10T17:58:14.000Z,0
CVE-2020-35223,https://securityvulnerability.io/vulnerability/CVE-2020-35223,,The CSRF protection mechanism implemented in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices could be bypassed by omitting the CSRF token parameter in HTTP requests.,Netgear,Gs116e Firmware,8.8,HIGH,0.0010100000072270632,false,,false,false,false,,,false,false,,2021-03-10T17:57:26.000Z,0
CVE-2020-35221,https://securityvulnerability.io/vulnerability/CVE-2020-35221,,"The hashing algorithm implemented for NSDP password authentication on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was found to be insecure, allowing attackers (with access to a network capture) to quickly generate multiple collisions to generate valid passwords, or infer some parts of the original.",Netgear,Gs116e Firmware,8.8,HIGH,0.000699999975040555,false,,false,false,false,,,false,false,,2021-03-10T17:48:11.000Z,0