Vulnerabilities > Netgear > R8500 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2020-04-23 CVE-2017-18738 Out-of-bounds Write vulnerability in Netgear products
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker.
low complexity
netgear CWE-787
8.8
2020-04-23 CVE-2017-18733 Improper Authentication vulnerability in Netgear products
Certain NETGEAR devices are affected by authentication bypass.
low complexity
netgear CWE-287
8.8
2020-04-23 CVE-2017-18744 Classic Buffer Overflow vulnerability in Netgear products
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker.
low complexity
netgear CWE-120
8.8
2020-04-23 CVE-2017-18743 Improper Authentication vulnerability in Netgear products
Certain NETGEAR devices are affected by authentication bypass.
low complexity
netgear CWE-287
8.8
2020-04-23 CVE-2017-18742 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
Certain NETGEAR devices are affected by CSRF.
network
low complexity
netgear CWE-352
8.8
2020-04-22 CVE-2017-18755 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
Certain NETGEAR devices are affected by CSRF.
network
low complexity
netgear CWE-352
8.8
2020-04-22 CVE-2017-18777 Insufficiently Protected Credentials vulnerability in Netgear products
Certain NETGEAR devices are affected by administrative password disclosure.
local
low complexity
netgear CWE-522
7.8
2020-04-22 CVE-2017-18772 Improper Authentication vulnerability in Netgear products
Certain NETGEAR devices are affected by authentication bypass.
low complexity
netgear CWE-287
8.8
2020-04-21 CVE-2017-18799 Improper Input Validation vulnerability in Netgear products
Certain NETGEAR devices are affected by incorrect configuration of security settings.
network
low complexity
netgear CWE-20
7.5
2020-04-21 CVE-2017-18794 Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection.
local
low complexity
netgear CWE-74
8.4