Buffer Overflow Vulnerability in NETGEAR JGS516PE/GS116Ev2 v2.6.0.43: Injection of IP Addresses via Whitelist

Buffer Overflow Vulnerability in NETGEAR JGS516PE/GS116Ev2 v2.6.0.43: Injection of IP Addresses via Whitelist

CVE-2020-35227 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web panel) allows an attacker to inject IP addresses into the whitelist via the checkedList parameter to the delete command.

Learn more about our Web App Pen Testing.