Rewterz Threat Advisory – CVE-2020-5384 – RSA MFA Agent for Microsoft Windows security bypass
August 5, 2020Rewterz Threat Advisory – CVE-2020-4481 – IBM UrbanCode Deploy XML external entity injection
August 6, 2020Rewterz Threat Advisory – CVE-2020-5384 – RSA MFA Agent for Microsoft Windows security bypass
August 5, 2020Rewterz Threat Advisory – CVE-2020-4481 – IBM UrbanCode Deploy XML external entity injection
August 6, 2020Severity
Medium
Analysis Summary
NETGEAR R6700v3 could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the the handling of string table file uploads. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Gain Access
- Execute arbitrary code
Affected Vendors
NETGEAR
Affected Products
NETGEAR R6700v3 1.0.4.97
Remediation
NETGEAR strongly recommends that you download the latest firmware as soon as possible.