Vulnerabilities > Netgear > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-30 | CVE-2021-20167 | Command Injection vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 contains a command injection vulnerability. | 7.7 |
| 2021-12-30 | CVE-2021-20168 | Improper Authentication vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 does not have sufficient protections to the UART interface. | 7.2 |
| 2021-12-30 | CVE-2021-20169 | Cleartext Transmission of Sensitive Information vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 does not utilize secure communications to the web interface. | 7.2 |
| 2021-12-30 | CVE-2021-20172 | Incorrect Permission Assignment for Critical Resource vulnerability in Netgear Genie Installer All known versions of the Netgear Genie Installer for macOS contain a local privilege escalation vulnerability. | 7.2 |
| 2021-12-30 | CVE-2021-23147 | Improper Authentication vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficient protections for the UART console. | 7.2 |
| 2021-12-26 | CVE-2021-45504 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45507 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45508 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45509 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 7.5 |
| 2021-12-26 | CVE-2021-45522 | Use of Hard-coded Credentials vulnerability in Netgear Xr1000 Firmware 1.0.0.44/1.0.0.50/1.0.0.52 NETGEAR XR1000 devices before 1.0.0.58 are affected by a hardcoded password. | 7.5 |