Vulnerabilities > Netgear > R6700 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-06 | CVE-2023-33533 | Command Injection vulnerability in Netgear products Netgear D6220 with Firmware Version 1.0.0.80, D8500 with Firmware Version 1.0.3.60, R6700 with Firmware Version 1.0.2.26, and R6900 with Firmware Version 1.0.2.26 are vulnerable to Command Injection. | 8.8 |
| 2023-04-26 | CVE-2023-30280 | Classic Buffer Overflow vulnerability in Netgear R6700 Firmware and R6900 Firmware Buffer Overflow vulnerability found in Netgear R6900 v.1.0.2.26, R6700v3 v.1.0.4.128, R6700 v.1.0.0.26 allows a remote attacker to execute arbitrary code and cause a denial ofservice via the getInputData parameter of the fwSchedule.cgi page. | 9.8 |
| 2023-03-29 | CVE-2022-27645 | Missing Authentication for Critical Function vulnerability in Netgear products This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 routers. | 8.8 |
| 2021-12-30 | CVE-2021-20173 | OS Command Injection vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 contains a command injection vulnerability in update functionality of the device. | 6.5 |
| 2021-12-30 | CVE-2021-20174 | Cleartext Transmission of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the web interface. | 5.0 |
| 2021-12-30 | CVE-2021-20175 | Cleartext Transmission of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the SOAP interface. | 5.0 |
| 2021-12-30 | CVE-2021-23147 | Improper Authentication vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficient protections for the UART console. | 7.2 |
| 2021-12-30 | CVE-2021-45077 | Cleartext Storage of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 stores sensitive information in plaintext. | 5.0 |
| 2021-12-30 | CVE-2021-45732 | Use of Hard-coded Credentials vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. | 6.5 |
| 2021-12-26 | CVE-2021-45512 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Netgear products Certain NETGEAR devices are affected by weak cryptography. | 9.8 |