Vulnerabilities > Netgear > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-22 | CVE-2018-21118 | Improper Authentication vulnerability in Netgear Xr500 Firmware 2.3.2.22 NETGEAR XR500 devices before 2.3.2.32 are affected by authentication bypass. | 8.8 |
| 2020-04-22 | CVE-2017-18768 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear products Certain NETGEAR devices are affected by CSRF. | 8.8 |
| 2020-04-22 | CVE-2017-18764 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 8.8 |
| 2020-04-22 | CVE-2017-18762 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 8.8 |
| 2020-04-22 | CVE-2018-21117 | Unspecified vulnerability in Netgear Xr500 Firmware 2.3.2.22 NETGEAR XR500 devices before 2.3.2.32 are affected by remote code execution by unauthenticated attackers via the traceroute handler. low complexity netgear | 8.8 |
| 2020-04-22 | CVE-2018-21116 | Unspecified vulnerability in Netgear Xr500 Firmware 2.3.2.22 NETGEAR XR500 devices before 2.3.2.32 are affected by remote code execution by unauthenticated attackers. low complexity netgear | 8.8 |
| 2020-04-22 | CVE-2018-21115 | Improper Input Validation vulnerability in Netgear Xr500 Firmware 2.3.2.22 NETGEAR XR500 devices before 2.3.2.32 are affected by remote code execution by unauthenticated attackers. | 8.8 |
| 2020-04-22 | CVE-2018-21113 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 8.8 |
| 2020-04-22 | CVE-2017-18787 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 7.8 |
| 2020-04-22 | CVE-2017-18786 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 7.8 |