Vulnerabilities > Netgear > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-03 | CVE-2023-27358 | SQL Injection vulnerability in Netgear products NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-27360 | Origin Validation Error vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 lighttpd Misconfiguration Remote Code Execution Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-27361 | Out-of-bounds Write vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 rex_cgi JSON Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. | 8.0 |
| 2024-05-03 | CVE-2023-27367 | OS Command Injection vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 libcms_cli Command Injection Remote Code Execution Vulnerability. | 8.0 |
| 2024-05-03 | CVE-2023-27368 | Out-of-bounds Write vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-27369 | Out-of-bounds Write vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-34285 | Out-of-bounds Write vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 cmsCli_authenticate Stack-based Buffer Overflow Remote Code Execution Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-35722 | OS Command Injection vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability. | 8.8 |
| 2023-11-29 | CVE-2023-49694 | Unspecified vulnerability in Netgear Prosafe Network Management System A low-privileged OS user with access to a Windows host where NETGEAR ProSAFE Network Management System is installed can create arbitrary JSP files in a Tomcat web application directory. | 7.8 |
| 2023-08-07 | CVE-2023-36499 | Classic Buffer Overflow vulnerability in Netgear Xr300 Firmware 1.0.3.78 Netgear XR300 v1.0.3.78 was discovered to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at genie_ap_wifi_change.cgi. | 8.8 |