Vulnerabilities > Netgear > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-14 | CVE-2024-35518 | Command Injection vulnerability in Netgear Ex6120 Firmware Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the wan_dns1_pri parameter. | 6.8 |
| 2024-10-14 | CVE-2024-35519 | Command Injection vulnerability in Netgear Ex3700 Firmware, Ex6100 Firmware and Ex6120 Firmware Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable to command injection in operating_mode.cgi via the ap_mode parameter. | 6.8 |
| 2024-10-14 | CVE-2024-35520 | Command Injection vulnerability in Netgear R7000 Firmware 1.0.11.136 Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMT_invite.cgi via device_name2 parameter. | 6.8 |
| 2024-06-07 | CVE-2024-36788 | Unspecified vulnerability in Netgear Wnr614 Firmware 1.1.0.541.0.1 Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies. | 4.8 |
| 2024-02-11 | CVE-2024-1431 | Unspecified vulnerability in Netgear R7000 Firmware 1.0.11.13610.2.120 A vulnerability was found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. low complexity netgear | 6.5 |
| 2024-02-11 | CVE-2024-1430 | Unspecified vulnerability in Netgear R7000 Firmware 1.0.11.13610.2.120 A vulnerability has been found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. low complexity netgear | 6.5 |
| 2023-08-07 | CVE-2023-38924 | Classic Buffer Overflow vulnerability in Netgear Dgn3500 Firmware 1.1.00.37 Netgear DGN3500 1.1.00.37 was discovered to contain a buffer overflow via the http_password parameter at setup.cgi. | 6.5 |
| 2023-04-28 | CVE-2023-2395 | Cross-site Scripting vulnerability in Netgear Srx5308 Firmware 4.3.53 A vulnerability classified as problematic has been found in Netgear SRX5308 up to 4.3.5-3. | 6.1 |
| 2023-04-28 | CVE-2023-2396 | Cross-site Scripting vulnerability in Netgear Srx5308 Firmware 4.3.53 A vulnerability classified as problematic was found in Netgear SRX5308 up to 4.3.5-3. | 6.1 |
| 2023-04-28 | CVE-2023-2391 | Cross-site Scripting vulnerability in Netgear Srx5308 Firmware 4.3.53 A vulnerability was found in Netgear SRX5308 up to 4.3.5-3 and classified as problematic. | 4.8 |