Vulnerabilities > Netgear > R6220 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2021-08-11 CVE-2021-38525 Out-of-bounds Write vulnerability in Netgear products
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user.
network
low complexity
netgear CWE-787
7.2
2021-03-23 CVE-2021-29068 Classic Buffer Overflow vulnerability in Netgear products
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user.
network
low complexity
netgear CWE-120
8.8
2021-02-12 CVE-2020-27866 Unspecified vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers.
low complexity
netgear
8.8
2021-02-04 CVE-2020-27872 Exposure of Resource to Wrong Sphere vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers.
low complexity
netgear CWE-668
8.8
2020-12-30 CVE-2020-35841 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
7.6
2020-12-30 CVE-2020-35787 Classic Buffer Overflow vulnerability in Netgear products
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user.
low complexity
netgear CWE-120
8.0
2020-10-09 CVE-2020-26929 Command Injection vulnerability in Netgear R6220 Firmware and R6230 Firmware
Certain NETGEAR devices are affected by command injection by an authenticated user.
low complexity
netgear CWE-77
8.0
2020-10-09 CVE-2020-26914 Command Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
high complexity
netgear CWE-77
7.1
2020-10-09 CVE-2020-26912 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
Certain NETGEAR devices are affected by CSRF.
network
low complexity
netgear CWE-352
8.8
2020-10-09 CVE-2020-26911 Unspecified vulnerability in Netgear products
Certain NETGEAR devices are affected by lack of access control at the function level.
low complexity
netgear
8.8