Vulnerabilities > Netgear > R6020 Firmware

DATE CVE VULNERABILITY TITLE RISK
2021-12-26 CVE-2021-45501 Unspecified vulnerability in Netgear products
Certain NETGEAR devices are affected by authentication bypass.
network
low complexity
netgear
critical
 10.0
10
2021-12-26 CVE-2021-45551 Command Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
network
low complexity
netgear CWE-77
6.5
6.5
2021-12-26 CVE-2021-45656 Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by server-side injection.
local
low complexity
netgear CWE-74
4.6
4.6
2021-12-26 CVE-2021-45657 Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by server-side injection.
local
low complexity
netgear CWE-74
4.6
4.6
2021-12-26 CVE-2021-45672 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by Stored XSS.
network
netgear CWE-79
3.5
3.5
2021-09-17 CVE-2021-41383 Command Injection vulnerability in Netgear R6020 Firmware 1.0.0.48
setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands via shell metacharacters in the ntp_server field.
network
low complexity
netgear CWE-77
critical
 9.0
9.0
2021-08-11 CVE-2021-38514 Unspecified vulnerability in Netgear products
Certain NETGEAR devices are affected by authentication bypass.
network
low complexity
netgear
4.0
4.0
2021-08-11 CVE-2021-38516 Unspecified vulnerability in Netgear products
Certain NETGEAR devices are affected by lack of access control at the function level.
network
low complexity
netgear
critical
 10.0
10
2021-02-12 CVE-2020-27867 Command Injection vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers.
low complexity
netgear CWE-77
7.7
7.7
2021-02-12 CVE-2020-27866 Authentication Bypass Using an Alternate Path or Channel vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers.
low complexity
netgear CWE-288
8.3
8.3