Vulnerabilities > Netgear > Wac505 Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-04-27 CVE-2018-21097 Out-of-bounds Write vulnerability in Netgear products
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker.
network
low complexity
netgear CWE-787
critical
9.8
2020-04-27 CVE-2018-21096 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
Certain NETGEAR devices are affected by CSRF.
low complexity
netgear CWE-352
7.4
2020-04-27 CVE-2018-21094 Unspecified vulnerability in Netgear products
Certain NETGEAR devices are affected by incorrect configuration of security settings.
network
low complexity
netgear
7.3
2020-04-23 CVE-2018-21133 Out-of-bounds Write vulnerability in Netgear Wac505 Firmware and Wac510 Firmware
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker.
network
low complexity
netgear CWE-787
critical
9.8
2020-04-23 CVE-2018-21132 Missing Authentication for Critical Function vulnerability in Netgear Wac505 Firmware and Wac510 Firmware
Certain NETGEAR devices are affected by authentication bypass.
network
low complexity
netgear CWE-306
critical
9.8
2020-04-23 CVE-2018-21131 Unspecified vulnerability in Netgear Wac505 Firmware and Wac510 Firmware
Certain NETGEAR devices are affected by unauthenticated firmware downgrade.
network
low complexity
netgear
critical
9.1
2020-04-22 CVE-2018-21130 OS Command Injection vulnerability in Netgear Wac505 Firmware and Wac510 Firmware
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker.
low complexity
netgear CWE-78
8.8
2020-04-22 CVE-2018-21129 Information Exposure vulnerability in Netgear Wac505 Firmware and Wac510 Firmware
Certain NETGEAR devices are affected by disclosure of sensitive information.
low complexity
netgear CWE-200
6.5
2020-04-22 CVE-2018-21128 Improper Authentication vulnerability in Netgear Wac505 Firmware and Wac510 Firmware
Certain NETGEAR devices are affected by authentication bypass.
low complexity
netgear CWE-287
8.8
2020-04-22 CVE-2018-21127 OS Command Injection vulnerability in Netgear Wac505 Firmware and Wac510 Firmware
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker.
low complexity
netgear CWE-78
8.8