Vulnerabilities > Netgear > R7000P Firmware > 1.3.0.20
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-26 | CVE-2021-45625 | Command Injection vulnerability in Netgear R6900P Firmware, R7000P Firmware and Xr300 Firmware Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 7.5 |
2021-12-26 | CVE-2021-45638 | Out-of-bounds Write vulnerability in Netgear products Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. | 7.5 |
2021-12-26 | CVE-2021-45639 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by reflected XSS. | 4.3 |
2021-12-26 | CVE-2021-45647 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 5.0 |
2021-12-26 | CVE-2021-45649 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 2.1 |
2021-12-26 | CVE-2021-45650 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 5.0 |
2021-12-26 | CVE-2021-45670 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 3.5 |
2021-12-26 | CVE-2021-45673 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 3.5 |
2021-12-26 | CVE-2021-45679 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by privilege escalation. | 6.5 |
2021-11-15 | CVE-2021-34991 | Out-of-bounds Write vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400v2 1.0.4.106_10.0.80 routers. | 8.3 |