Vulnerabilities > Netgear > D6400 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-23 | CVE-2018-21134 | Out-of-bounds Write vulnerability in Netgear products Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. | 7.5 |
| 2020-04-23 | CVE-2017-18733 | Improper Authentication vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 5.8 |
| 2020-04-22 | CVE-2017-18756 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. low complexity netgear | 5.8 |
| 2020-04-22 | CVE-2017-18785 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by XSS. | 3.5 |
| 2020-04-22 | CVE-2017-18778 | Improper Input Validation vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. | 2.1 |
| 2020-04-22 | CVE-2017-18777 | Insufficiently Protected Credentials vulnerability in Netgear products Certain NETGEAR devices are affected by administrative password disclosure. | 2.1 |
| 2020-04-22 | CVE-2017-18769 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. | 2.1 |
| 2020-04-22 | CVE-2017-18789 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 2.1 |
| 2020-04-22 | CVE-2017-18788 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 4.6 |
| 2020-04-20 | CVE-2017-18849 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 4.6 |