cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-35783,https://securityvulnerability.io/vulnerability/CVE-2020-35783,,"Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, GS116Ev2 before 2.6.0.48, JGS524Ev2 before 2.6.0.48, and JGS524PE before 2.6.0.48. The NSDP protocol version allows unauthenticated remote attackers to obtain all the switch configuration parameters by sending the corresponding read requests.",Netgear,Jgs516pe Firmware,6.5,MEDIUM,0.0011899999808520079,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35782,https://securityvulnerability.io/vulnerability/CVE-2020-35782,,"Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. The TFTP firmware update mechanism does not properly implement firmware validations, allowing remote attackers to write arbitrary data to internal memory.",Netgear,Jgs516pe Firmware,8.1,HIGH,0.0016799999866634607,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35801,https://securityvulnerability.io/vulnerability/CVE-2020-35801,,"Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. A TFTP server was found to be active by default. It allows remote authenticated users to update the switch firmware.",Netgear,Jgs516pe Firmware,8.3,HIGH,0.0005499999970197678,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35784,https://securityvulnerability.io/vulnerability/CVE-2020-35784,,"Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, and GS116Ev2 before 2.6.0.48.",Netgear,Jgs516pe Firmware,6.2,MEDIUM,0.0008699999889358878,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-26919,https://securityvulnerability.io/vulnerability/CVE-2020-26919,,NETGEAR JGS516PE devices before 2.6.0.43 are affected by lack of access control at the function level.,Netgear,Jgs516pe Firmware,9.8,CRITICAL,0.9721199870109558,true,2021-11-03T00:00:00.000Z,false,false,true,2021-11-03T00:00:00.000Z,,false,false,,2020-10-09T06:29:14.000Z,0
CVE-2017-18862,https://securityvulnerability.io/vulnerability/CVE-2017-18862,,"Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE before 2017-05-11, GS108Ev3 before 2017-05-11, GS108PEv3 before 2017-05-11, GS116Ev2 before 2017-05-11, GSS108E before 2017-05-11, GSS116E before 2017-05-11, XS708Ev2 before 2017-05-11, and XS716E before 2017-05-11.",Netgear,Jgs516pe Firmware,6.5,MEDIUM,0.0006799999973736703,false,,false,false,false,,,false,false,,2020-04-28T15:54:25.000Z,0
CVE-2020-11791,https://securityvulnerability.io/vulnerability/CVE-2020-11791,,NETGEAR JGS516PE devices before 2.6.0.43 are affected by reflected XSS.,Netgear,Jgs516pe Firmware,5.2,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2020-04-15T17:08:24.000Z,0