Vulnerabilities > Netgear > R7800 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-29 | CVE-2022-27641 | Integer Overflow or Wraparound vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. | 8.8 |
| 2022-03-17 | CVE-2021-44261 | Missing Authentication for Critical Function vulnerability in Netgear products A vulnerability is in the 'BRS_top.html' page of the Netgear W104, version WAC104-V1.0.4.13, which can allow a remote attacker to access this page without any authentication. | 5.3 |
| 2021-12-26 | CVE-2021-45548 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 8.8 |
| 2021-12-26 | CVE-2021-45552 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 7.2 |
| 2021-12-26 | CVE-2021-45602 | OS Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 7.8 |
| 2021-12-26 | CVE-2021-45603 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 5.5 |
| 2021-12-26 | CVE-2021-45618 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 9.8 |
| 2021-12-26 | CVE-2021-45619 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 9.8 |
| 2021-12-26 | CVE-2021-45623 | Command Injection vulnerability in Netgear R7800 Firmware, R9000 Firmware and Xr500 Firmware Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 9.8 |
| 2021-12-26 | CVE-2021-45658 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by server-side injection. | 9.8 |