How severe is CVE-2019-20732?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.6 out of 10.

What type of vulnerability is CVE-2019-20732?

This is classified as CWE-77, which is a common weakness in software security.

CVE-2019-20732

MEDIUM Year: 2019

CVSS v3 Score

5.6

Medium

CVSS v2 Score

4.6

Medium

Weakness Type

CWE-77

View all →

Vulnerability Description

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.40, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGND2200Bv4 before 1.0.0.102, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, R6250 before 1.0.4.20, R6300v2 before 1.0.4.24, R6400 before 1.0.1.32, R6400v2 before 1.0.2.44, R6700 before 1.0.1.46, R6900 before 1.0.1.46, R7000 before 1.0.9.26, R6900P before 1.3.0.20, R7000P before 1.3.0.20, R7100LG before 1.0.0.40, R7300DST before 1.0.0.62, R7900 before 1.0.2.10, R8000 before 1.0.4.12, R7900P before 1.3.0.10, R8000P before 1.3.0.10, R8300 before 1.0.2.106, R8500 before 1.0.2.106, WN2500RPv2 before 1.0.1.54, WNDR3400v3 before 1.0.1.18, and WNR3500Lv2 before 1.2.0.48.

CVE-2024-44610

MEDIUM

CVSS:5.6(Medium)

PCAN-Ethernet Gateway FD before 1.3.0 and PCAN-Ethernet Gateway before 2.11.0 are vulnerable to Command injection via shell metacharacters in a Software Update to processing.php.

CWE-772024

CVE-2017-1352

MEDIUM

CVSS:5.5(Medium)

IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to inject commands into work orders that could be executed by another user that downloads the affected file. IBM X-Force ID: 1...

CWE-772017

CVE-2018-8306

MEDIUM

CVSS:5.5(Medium)

A command injection vulnerability exists in the Microsoft Wireless Display Adapter (MWDA) when the Microsoft Wireless Display Adapter does not properly manage user input, aka "Microsoft Wireless Displ...

CWE-772018

CVE-2023-23356

MEDIUM

CVSS:5.5(Medium)

A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access ...

CWE-772023

CVE-2023-28425

MEDIUM

CVSS:5.5(Medium)

Redis is an in-memory database that persists on disk. Starting in version 7.0.8 and prior to version 7.0.10, authenticated users can use the MSETNX command to trigger a runtime assertion and terminati...

CWE-772023

CVE-2024-8405

MEDIUM

CVSS:5.5(Medium)

An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorr...

CWE-772024

CVE-2019-20732

Vulnerability Description

Related Vulnerabilities

CVE-2024-44610

CVE-2017-1352

CVE-2018-8306

CVE-2023-23356

CVE-2023-28425

CVE-2024-8405