Vulnerabilities > Netgear > R8500 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2021-03-29 CVE-2021-27239 Unspecified vulnerability in Netgear products
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400 and R6700 firmware version 1.0.4.98 routers.
low complexity
netgear
8.8
2020-11-09 CVE-2020-28373 Out-of-bounds Write vulnerability in Netgear products
upnpd on certain NETGEAR devices allows remote (LAN) attackers to execute arbitrary code via a stack-based buffer overflow.
low complexity
netgear CWE-787
8.8
2020-05-05 CVE-2017-18864 Classic Buffer Overflow vulnerability in Netgear products
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker.
low complexity
netgear CWE-120
8.8
2020-04-27 CVE-2018-21169 Unspecified vulnerability in Netgear products
Certain NETGEAR devices are affected by incorrect configuration of security settings.
low complexity
netgear
8.8
2020-04-27 CVE-2018-21168 Information Exposure vulnerability in Netgear products
Certain NETGEAR devices are affected by disclosure of sensitive information.
network
low complexity
netgear CWE-200
7.5
2020-04-27 CVE-2018-21156 Classic Buffer Overflow vulnerability in Netgear products
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user.
network
low complexity
netgear CWE-120
7.2
2020-04-27 CVE-2018-21093 Out-of-bounds Write vulnerability in Netgear products
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker.
low complexity
netgear CWE-787
8.8
2020-04-24 CVE-2017-18709 Unspecified vulnerability in Netgear R8300 Firmware and R8500 Firmware
Certain NETGEAR devices are affected by incorrect configuration of security settings.
local
low complexity
netgear
7.8
2020-04-24 CVE-2017-18708 Cross-Site Request Forgery (CSRF) vulnerability in Netgear R8300 Firmware and R8500 Firmware
Certain NETGEAR devices are affected by CSRF.
network
low complexity
netgear CWE-352
8.8
2020-04-23 CVE-2018-21139 Information Exposure vulnerability in Netgear products
Certain NETGEAR devices are affected by disclosure of sensitive information.
network
low complexity
netgear CWE-200
7.5