Vulnerabilities > Netgear

DATE CVE VULNERABILITY TITLE RISK
2023-03-10 CVE-2023-27853 Classic Buffer Overflow vulnerability in Netgear Rax30 Firmware
NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a format string vulnerability in a SOAP service that could allow an attacker to execute arbitrary code on the device.
network
low complexity
netgear CWE-120
critical
9.8
2023-02-15 CVE-2023-0848 Unspecified vulnerability in Netgear Wndr3700 Firmware 1.0.1.14
A vulnerability was found in Netgear WNDR3700v2 1.0.1.14.
network
low complexity
netgear
7.5
2023-02-15 CVE-2023-0849 Command Injection vulnerability in Netgear Wndr3700 Firmware 1.0.1.14
A vulnerability has been found in Netgear WNDR3700v2 1.0.1.14 and classified as critical.
network
low complexity
netgear CWE-77
critical
9.8
2023-02-15 CVE-2023-0850 Unspecified vulnerability in Netgear Wndr3700 Firmware 1.0.1.14
A vulnerability was found in Netgear WNDR3700v2 1.0.1.14 and classified as problematic.
network
low complexity
netgear
7.5
2023-02-15 CVE-2023-24498 Insufficiently Protected Credentials vulnerability in Netgear Prosafe Fs726Tp Firmware
An uspecified endpoint in the web server of the switch does not properly authenticate the user identity, and may allow downloading a config page with the password to the switch in clear text.
network
low complexity
netgear CWE-522
7.5
2023-02-13 CVE-2022-48322 Out-of-bounds Write vulnerability in Netgear products
NETGEAR Nighthawk WiFi Mesh systems and routers are affected by a stack-based buffer overflow vulnerability.
network
low complexity
netgear CWE-787
critical
9.8
2023-02-02 CVE-2023-23110 Download of Code Without Integrity Check vulnerability in Netgear products
An exploitable firmware modification vulnerability was discovered in certain Netgear products.
network
high complexity
netgear CWE-494
7.4
2023-01-31 CVE-2022-48176 Out-of-bounds Write vulnerability in Netgear products
Netgear routers R7000P before v1.3.3.154, R6900P before v1.3.3.154, R7960P before v1.4.4.94, and R8000P before v1.4.4.94 were discovered to contain a pre-authentication stack overflow.
local
low complexity
netgear CWE-787
7.8
2023-01-26 CVE-2022-47052 Injection vulnerability in Netgear Ac1200 R6220 Firmware 1.1.0.1121.0.1/1.1.0.1141.0.1
The web interface of the 'Nighthawk R6220 AC1200 Smart Wi-Fi Router' is vulnerable to a CRLF Injection attack that can be leveraged to perform Reflected XSS and HTML Injection.
network
low complexity
netgear CWE-74
6.1
2022-12-30 CVE-2022-48196 Classic Buffer Overflow vulnerability in Netgear products
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker.
network
low complexity
netgear CWE-120
critical
9.8