Vulnerabilities > Netgear
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-07 | CVE-2023-38921 | Command Injection vulnerability in Netgear Wag302V2 Firmware and Wg302V2 Firmware Netgear WG302v2 v5.2.9 and WAG302v2 v5.1.19 were discovered to contain multiple command injection vulnerabilities in the upgrade_handler function via the firmwareRestore and firmwareServerip parameters. | 8.8 |
| 2023-08-07 | CVE-2023-38922 | Classic Buffer Overflow vulnerability in Netgear products Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the http_passwd and http_username parameters in the update_auth function. | 8.8 |
| 2023-08-07 | CVE-2023-38924 | Classic Buffer Overflow vulnerability in Netgear Dgn3500 Firmware 1.1.00.37 Netgear DGN3500 1.1.00.37 was discovered to contain a buffer overflow via the http_password parameter at setup.cgi. | 6.5 |
| 2023-08-07 | CVE-2023-38925 | Classic Buffer Overflow vulnerability in Netgear Dc112A Firmware, Ex6200 Firmware and R6300V2 Firmware Netgear DC112A 1.0.0.64, EX6200 1.0.3.94 and R6300v2 1.0.4.8 were discovered to contain a buffer overflow via the http_passwd parameter in password.cgi. | 8.8 |
| 2023-08-07 | CVE-2023-38926 | Classic Buffer Overflow vulnerability in Netgear Ex6200 Firmware 1.0.3.94 Netgear EX6200 v1.0.3.94 was discovered to contain a buffer overflow via the wla_temp_ssid parameter at acosNvramConfig_set. | 8.8 |
| 2023-08-07 | CVE-2023-38928 | Command Injection vulnerability in Netgear R7100Lg Firmware 1.0.0.78 Netgear R7100LG 1.0.0.78 was discovered to contain a command injection vulnerability via the password parameter at usb_remote_invite.cgi. | 9.8 |
| 2023-08-07 | CVE-2023-39550 | Classic Buffer Overflow vulnerability in Netgear products Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the http_passwd and http_username parameters in the check_auth function. | 8.8 |
| 2023-06-20 | CVE-2023-34563 | Classic Buffer Overflow vulnerability in Netgear R6250 Firmware 1.0.4.48 netgear R6250 Firmware Version 1.0.4.48 is vulnerable to Buffer Overflow after authentication. | 9.8 |
| 2023-06-06 | CVE-2023-33532 | Command Injection vulnerability in Netgear R6250 Firmware 1.0.4.48 There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. | 9.8 |
| 2023-06-06 | CVE-2023-33533 | Command Injection vulnerability in Netgear products Netgear D6220 with Firmware Version 1.0.0.80, D8500 with Firmware Version 1.0.3.60, R6700 with Firmware Version 1.0.2.26, and R6900 with Firmware Version 1.0.2.26 are vulnerable to Command Injection. | 8.8 |