Vulnerabilities > Netgear > Mr60 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-29 | CVE-2022-27642 | Incorrect Authorization vulnerability in Netgear products This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. | 8.8 |
| 2023-03-29 | CVE-2022-27647 | OS Command Injection vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. | 8.0 |
| 2023-01-31 | CVE-2022-48176 | Out-of-bounds Write vulnerability in Netgear products Netgear routers R7000P before v1.3.3.154, R6900P before v1.3.3.154, R7960P before v1.4.4.94, and R8000P before v1.4.4.94 were discovered to contain a pre-authentication stack overflow. | 7.8 |
| 2021-12-26 | CVE-2021-45540 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 8.4 |
| 2021-12-26 | CVE-2021-45541 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 8.8 |
| 2021-03-23 | CVE-2021-29073 | Out-of-bounds Write vulnerability in Netgear products Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. | 8.4 |
| 2021-03-23 | CVE-2021-29068 | Classic Buffer Overflow vulnerability in Netgear products Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. | 8.8 |
| 2020-06-18 | CVE-2020-14429 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of administrative credentials. low complexity netgear | 8.8 |