Vulnerabilities > Netgear > R8900 Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-04-16 CVE-2019-20722 Command Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
low complexity
netgear CWE-77
5.2
5.2
2020-04-16 CVE-2019-20721 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
netgear CWE-79
3.5
3.5
2020-04-16 CVE-2019-20720 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
netgear CWE-79
3.5
3.5
2020-04-16 CVE-2019-20714 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
netgear CWE-79
3.5
3.5
2020-04-16 CVE-2019-20689 Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
low complexity
netgear CWE-74
5.2
5.2
2020-04-16 CVE-2019-20688 Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
low complexity
netgear CWE-74
5.2
5.2
2020-04-15 CVE-2019-20680 Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
low complexity
netgear CWE-74
5.2
5.2
2020-04-15 CVE-2020-11792 Improper Certificate Validation vulnerability in Netgear products
NETGEAR R8900, R9000, RAX120, and XR700 devices before 2020-01-20 are affected by Transport Layer Security (TLS) certificate private key disclosure.
network
low complexity
netgear CWE-295
5.0
5.0
2020-04-15 CVE-2020-11787 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
netgear CWE-79
3.5
3.5
2020-04-15 CVE-2019-20650 Improper Input Validation vulnerability in Netgear products
Certain NETGEAR devices are affected by denial of service.
network
low complexity
netgear CWE-20
5.0
5.0