Vulnerabilities > Netgear > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-26 | CVE-2021-45592 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.8 |
| 2021-12-26 | CVE-2021-45593 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.8 |
| 2021-12-26 | CVE-2021-45594 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.8 |
| 2021-12-26 | CVE-2021-45603 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 5.5 |
| 2021-12-26 | CVE-2021-45604 | Out-of-bounds Write vulnerability in Netgear products Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. | 4.5 |
| 2021-12-26 | CVE-2021-45639 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by reflected XSS. | 6.1 |
| 2021-12-26 | CVE-2021-45643 | Unspecified vulnerability in Netgear R6400V2 Firmware, R6700V3 Firmware and Xr1000 Firmware Certain NETGEAR devices are affected by incorrect configuration of security settings. low complexity netgear | 6.5 |
| 2021-12-26 | CVE-2021-45649 | Information Exposure vulnerability in Netgear products Certain NETGEAR devices are affected by disclosure of sensitive information. | 5.5 |
| 2021-12-26 | CVE-2021-45655 | Injection vulnerability in Netgear R6400 Firmware NETGEAR R6400 devices before 1.0.1.70 are affected by server-side injection. | 6.8 |
| 2021-12-26 | CVE-2021-45662 | Cross-site Scripting vulnerability in Netgear R7000 Firmware NETGEAR R7000 devices before 1.0.9.88 are affected by stored XSS. | 5.4 |