The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a denial of service attack.
2021-03-10T19:15:12.687
2024-11-21T05:27:04.660
Modified
CVSSv3.1: 6.5 (MEDIUM)
AV:A/AC:L/Au:N/C:N/I:N/A:C
6.5
6.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | netgear | gs116e_firmware | 2.6.0.43 | Yes |
| Hardware | netgear | gs116e | v2 | No |
| Operating System | netgear | jgs516pe_firmware | 2.6.0.43 | Yes |
| Hardware | netgear | jgs516pe | - | No |