Vulnerabilities > Netgear > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-30 | CVE-2020-35781 | Unspecified vulnerability in Netgear Nms300 Firmware NETGEAR NMS300 devices before 1.6.0.27 are affected by denial of service. | 6.5 |
| 2020-12-30 | CVE-2020-35780 | Unspecified vulnerability in Netgear Nms300 Firmware NETGEAR NMS300 devices before 1.6.0.27 are affected by denial of service. | 6.5 |
| 2020-11-24 | CVE-2020-5641 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear Gs108Ev3 Firmware 2.06.10 Cross-site request forgery (CSRF) vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may be changed without the user's intention or consent via unspecified vectors. | 6.5 |
| 2020-11-02 | CVE-2020-28041 | Incorrect Default Permissions vulnerability in Netgear Nighthawk R7000 Firmware 1.0.9.6410.2.64 The SIP ALG implementation on NETGEAR Nighthawk R7000 1.0.9.64_10.2.64 devices allows remote attackers to communicate with arbitrary TCP and UDP services on a victim's intranet machine, if the victim visits an attacker-controlled web site with a modern browser, aka NAT Slipstreaming. | 6.5 |
| 2020-10-13 | CVE-2020-17409 | Unspecified vulnerability in Netgear products This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R6120, R6080, R6260, R6220, R6020, JNR3210, and WNR2020 routers with firmware 1.0.66. low complexity netgear | 6.5 |
| 2020-10-09 | CVE-2020-26931 | Unspecified vulnerability in Netgear Wc7500 Firmware, Wc7600 Firmware and Wc9500 Firmware Certain NETGEAR devices are affected by disclosure of sensitive information. low complexity netgear | 6.5 |
| 2020-10-09 | CVE-2020-26924 | Unspecified vulnerability in Netgear Wac720 Firmware and Wac730 Firmware Certain NETGEAR devices are affected by disclosure of sensitive information. low complexity netgear | 6.5 |
| 2020-10-09 | CVE-2020-26923 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 4.8 |
| 2020-10-09 | CVE-2020-26922 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.7 |
| 2020-10-09 | CVE-2020-26918 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 4.8 |