Vulnerabilities > Netgear > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-22 CVE-2023-51634 Improper Certificate Validation vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vulnerability.
high complexity
netgear CWE-295
7.5
7.5
2024-11-22 CVE-2023-51635 Out-of-bounds Write vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 fing_dil Stack-based Buffer Overflow Remote Code Execution Vulnerability.
low complexity
netgear CWE-787
8.8
8.8
2024-10-11 CVE-2024-35517 Command Injection vulnerability in Netgear Xr1000 Firmware 1.0.0.64
Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_remote_smb_conf.cgi via the share_name parameter.
network
low complexity
netgear CWE-77
7.2
7.2
2024-10-11 CVE-2024-35522 Command Injection vulnerability in Netgear Ex3700 Firmware
Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operating_mode.cgi via the ap_mode parameter with ap_24g_manual set to 1 and ap_24g_manual_sec set to NotNone.
network
low complexity
netgear CWE-77
7.2
7.2
2024-08-21 CVE-2024-6813 SQL Injection vulnerability in Netgear Prosafe Network Management System 1.7.0.34
NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution Vulnerability.
network
low complexity
netgear CWE-89
8.8
8.8
2024-08-21 CVE-2024-6814 SQL Injection vulnerability in Netgear Prosafe Network Management System 1.7.0.34
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution Vulnerability.
network
low complexity
netgear CWE-89
8.8
8.8
2024-06-06 CVE-2024-5505 Path Traversal vulnerability in Netgear Prosafe Network Management System
NETGEAR ProSAFE Network Management System UpLoadServlet Directory Traversal Remote Code Execution Vulnerability.
network
low complexity
netgear CWE-22
8.8
8.8
2024-05-03 CVE-2023-40479 OS Command Injection vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability.
low complexity
netgear CWE-78
8.8
8.8
2024-05-03 CVE-2023-40480 OS Command Injection vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 DHCP Server Command Injection Remote Code Execution Vulnerability.
low complexity
netgear CWE-78
8.8
8.8
2024-05-03 CVE-2023-27356 OS Command Injection vulnerability in Netgear Rax30 Firmware and Raxe300 Firmware
NETGEAR RAX30 logCtrl Command Injection Remote Code Execution Vulnerability.
low complexity
netgear CWE-78
8.0
8.0