Vulnerabilities > Netgear > R7000 Firmware > 1.0.11.116
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-26 | CVE-2021-45620 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 9.8 |
| 2021-12-26 | CVE-2021-45621 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 9.8 |
| 2021-12-26 | CVE-2021-45649 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 5.5 |
| 2021-12-26 | CVE-2021-45663 | Cross-site Scripting vulnerability in Netgear R7000 Firmware NETGEAR R7000 devices before 1.0.11.126 are affected by stored XSS. | 5.4 |
| 2021-12-26 | CVE-2021-45664 | Cross-site Scripting vulnerability in Netgear R7000 Firmware NETGEAR R7000 devices before 1.0.11.126 are affected by stored XSS. | 4.8 |
| 2021-12-26 | CVE-2021-45679 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by privilege escalation. | 7.2 |
| 2021-11-15 | CVE-2021-34991 | Out-of-bounds Write vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400v2 1.0.4.106_10.0.80 routers. | 8.8 |
| 2020-04-28 | CVE-2016-11059 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by password exposure. | 7.5 |