Vulnerabilities > Netgear > R8500 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-20 | CVE-2017-18849 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 7.8 |
| 2020-04-20 | CVE-2017-18848 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear products Certain NETGEAR devices are affected by CSRF. | 8.8 |
| 2020-04-20 | CVE-2017-18842 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear products Certain NETGEAR devices are affected by CSRF. | 8.8 |
| 2020-04-20 | CVE-2017-18850 | Improper Authentication vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 8.4 |
| 2020-04-20 | CVE-2017-18852 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear products Certain NETGEAR devices are affected by CSRF and authentication bypass. | 8.8 |
| 2020-04-16 | CVE-2019-20753 | Out-of-bounds Write vulnerability in Netgear products Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. | 8.8 |
| 2020-04-16 | CVE-2019-20739 | Classic Buffer Overflow vulnerability in Netgear R8500 Firmware NETGEAR R8500 devices before v1.0.2.128 are affected by a buffer overflow by an unauthenticated attacker. | 8.8 |
| 2020-04-16 | CVE-2019-20734 | Classic Buffer Overflow vulnerability in Netgear products Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. | 8.8 |
| 2020-04-15 | CVE-2019-20680 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 8.0 |
| 2020-04-15 | CVE-2020-11770 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 8.8 |