R7000 Firmware

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-26	CVE-2021-45650	Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. network low complexity netgear CWE-200	5.0
2021-12-26	CVE-2021-45662	Cross-site Scripting vulnerability in Netgear R7000 Firmware NETGEAR R7000 devices before 1.0.9.88 are affected by stored XSS. network netgear CWE-79	3.5
2021-12-26	CVE-2021-45663	Cross-site Scripting vulnerability in Netgear R7000 Firmware NETGEAR R7000 devices before 1.0.11.126 are affected by stored XSS. network netgear CWE-79	3.5
2021-12-26	CVE-2021-45664	Cross-site Scripting vulnerability in Netgear R7000 Firmware NETGEAR R7000 devices before 1.0.11.126 are affected by stored XSS. network netgear CWE-79	3.5
2021-12-26	CVE-2021-45670	Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. network netgear CWE-79	3.5
2021-12-26	CVE-2021-45673	Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. network netgear CWE-79	3.5
2021-12-26	CVE-2021-45674	Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. network netgear CWE-79	3.5
2021-12-26	CVE-2021-45679	Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by privilege escalation. network low complexity netgear	6.5
2021-11-15	CVE-2021-34991	Out-of-bounds Write vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400v2 1.0.4.106_10.0.80 routers. low complexity netgear CWE-787	8.3
2021-09-21	CVE-2021-40847	Cleartext Transmission of Sensitive Information vulnerability in Netgear products The update process of the Circle Parental Control Service on various NETGEAR routers allows remote attackers to achieve remote code execution as root via a MitM attack. network netgear CWE-319 critical	9.3