Vulnerabilities > Netgear > R6850 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-12-26 CVE-2021-45672 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by Stored XSS.
network
low complexity
netgear CWE-79
4.8
2021-12-26 CVE-2021-45675 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
2021-08-11 CVE-2021-38535 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
2021-08-11 CVE-2021-38536 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
2021-08-11 CVE-2021-38537 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
2021-02-12 CVE-2020-27867 Command Injection vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers.
low complexity
netgear CWE-77
6.8
2021-02-04 CVE-2020-27873 Incorrect Authorization vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers.
low complexity
netgear CWE-863
6.5
2020-10-13 CVE-2020-17409 Authentication Bypass Using an Alternate Path or Channel vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R6120, R6080, R6260, R6220, R6020, JNR3210, and WNR2020 routers with firmware 1.0.66.
low complexity
netgear CWE-288
6.5
2020-05-28 CVE-2020-13245 Improper Certificate Validation vulnerability in Netgear products
Certain NETGEAR devices are affected by Missing SSL Certificate Validation.
network
high complexity
netgear CWE-295
5.9