Vulnerabilities > Netgear > R8300 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-11 | CVE-2021-38539 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by privilege escalation. | 8.8 |
| 2021-08-11 | CVE-2021-38514 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 2.7 |
| 2021-03-29 | CVE-2021-27239 | Stack-based Buffer Overflow vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400 and R6700 firmware version 1.0.4.98 routers. | 8.8 |
| 2020-12-30 | CVE-2020-35800 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. | 9.4 |
| 2020-12-30 | CVE-2020-35796 | Classic Buffer Overflow vulnerability in Netgear products Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. | 9.8 |
| 2020-11-09 | CVE-2020-28373 | Out-of-bounds Write vulnerability in Netgear products upnpd on certain NETGEAR devices allows remote (LAN) attackers to execute arbitrary code via a stack-based buffer overflow. | 8.8 |
| 2020-10-09 | CVE-2020-26918 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 4.8 |
| 2020-10-09 | CVE-2020-26917 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 4.8 |
| 2020-09-01 | CVE-2020-25067 | Command Injection vulnerability in Netgear R8300 Firmware NETGEAR R8300 devices before 1.0.2.134 are affected by command injection by an unauthenticated attacker. | 8.8 |
| 2020-05-05 | CVE-2017-18865 | Out-of-bounds Write vulnerability in Netgear R8300 Firmware and R8500 Firmware Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. | 6.8 |