Vulnerabilities > Netgear > Cbr40 Firmware > 2.3.5.12
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-01 | CVE-2023-36187 | Classic Buffer Overflow vulnerability in Netgear products Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd. | 9.8 |
| 2021-12-26 | CVE-2021-45504 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45507 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45508 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45509 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45597 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.5 |
| 2021-12-26 | CVE-2021-45598 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.5 |
| 2021-12-26 | CVE-2021-45599 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.5 |
| 2021-12-26 | CVE-2021-45601 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.5 |
| 2021-12-26 | CVE-2021-45612 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 10.0 |