Vulnerabilities > Netgear > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-30 | CVE-2020-35798 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 7.8 |
| 2020-12-30 | CVE-2020-35789 | OS Command Injection vulnerability in Netgear Nms300 Firmware NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an authenticated user. | 8.8 |
| 2020-12-30 | CVE-2020-35787 | Classic Buffer Overflow vulnerability in Netgear products Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. | 8.0 |
| 2020-12-30 | CVE-2020-35785 | Improper Authentication vulnerability in Netgear Dgn2200 Firmware 1.0.0.507.0.50/1.0.0.55/1.0.0.58 NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication (aka PSV-2020-0363, PSV-2020-0364, and PSV-2020-0365). | 8.8 |
| 2020-12-30 | CVE-2020-35784 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by lack of access control at the function level. | 7.2 |
| 2020-12-30 | CVE-2020-35782 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by lack of access control at the function level. low complexity netgear | 8.1 |
| 2020-12-30 | CVE-2020-35779 | Unspecified vulnerability in Netgear Nms300 Firmware NETGEAR NMS300 devices before 1.6.0.27 are affected by denial of service. | 8.6 |
| 2020-12-30 | CVE-2020-35778 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear Gs716T Firmware and Gs724T Firmware Certain NETGEAR devices are affected by CSRF. | 8.8 |
| 2020-12-30 | CVE-2020-35777 | Command Injection vulnerability in Netgear Dgn2200V1 Firmware NETGEAR DGN2200v1 devices before v1.0.0.58 are affected by command injection. | 8.4 |
| 2020-11-09 | CVE-2020-28373 | Out-of-bounds Write vulnerability in Netgear products upnpd on certain NETGEAR devices allows remote (LAN) attackers to execute arbitrary code via a stack-based buffer overflow. | 8.8 |