Vulnerabilities > Netgear

DATE CVE VULNERABILITY TITLE RISK
2024-02-11 CVE-2024-1431 Unspecified vulnerability in Netgear R7000 Firmware 1.0.11.13610.2.120
A vulnerability was found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic.
low complexity
netgear
6.5
2024-02-11 CVE-2024-1430 Unspecified vulnerability in Netgear R7000 Firmware 1.0.11.13610.2.120
A vulnerability has been found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic.
low complexity
netgear
6.5
2023-12-15 CVE-2023-50089 Command Injection vulnerability in Netgear Wnr2000 Firmware 1.0.0.70
A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70.
network
low complexity
netgear CWE-77
critical
9.8
2023-12-08 CVE-2023-49007 Out-of-bounds Write vulnerability in Netgear Rbr750 Firmware
In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd.
network
low complexity
netgear CWE-787
critical
9.8
2023-11-29 CVE-2023-49693 Missing Authentication for Critical Function vulnerability in Netgear Prosafe Network Management System
NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing attackers to execute arbitrary code.
network
low complexity
netgear CWE-306
critical
9.8
2023-11-29 CVE-2023-49694 Unspecified vulnerability in Netgear Prosafe Network Management System
A low-privileged OS user with access to a Windows host where NETGEAR ProSAFE Network Management System is installed can create arbitrary JSP files in a Tomcat web application directory.
local
low complexity
netgear
7.8
2023-09-01 CVE-2023-36187 Classic Buffer Overflow vulnerability in Netgear products
Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.
network
low complexity
netgear CWE-120
critical
9.8
2023-08-07 CVE-2023-36499 Classic Buffer Overflow vulnerability in Netgear Xr300 Firmware 1.0.3.78
Netgear XR300 v1.0.3.78 was discovered to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at genie_ap_wifi_change.cgi.
network
low complexity
netgear CWE-120
8.8
2023-08-07 CVE-2023-38412 Classic Buffer Overflow vulnerability in Netgear R6900P Firmware 1.3.3.154
Netgear R6900P v1.3.3.154 was discovered to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at ia_ap_setting.cgi.
network
low complexity
netgear CWE-120
8.8
2023-08-07 CVE-2023-38591 Classic Buffer Overflow vulnerability in Netgear Dg834Gv5 Firmware 1.6.01.34
Netgear DG834Gv5 1.6.01.34 was discovered to contain multiple buffer overflows via the wla_ssid and wla_temp_ssid parameters at bsw_ssid.cgi.
network
low complexity
netgear CWE-120
8.8