Vulnerabilities > Netgear > R8500 Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-26 | CVE-2021-45550 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.8 |
| 2021-08-11 | CVE-2021-38534 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 4.8 |
| 2020-10-09 | CVE-2020-26918 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 4.8 |
| 2020-10-09 | CVE-2020-26917 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 4.8 |
| 2020-05-05 | CVE-2017-18865 | Out-of-bounds Write vulnerability in Netgear R8300 Firmware and R8500 Firmware Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. | 6.8 |
| 2020-04-29 | CVE-2017-18853 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by password recovery and file access. | 6.5 |
| 2020-04-28 | CVE-2018-21225 | OS Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.8 |
| 2020-04-24 | CVE-2018-21231 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. low complexity netgear | 5.4 |
| 2020-04-24 | CVE-2018-21230 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. low complexity netgear | 5.4 |
| 2020-04-24 | CVE-2017-18704 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. | 6.5 |