Vulnerabilities > Netgear > Wc9500 Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-10-09 CVE-2020-26931 Unspecified vulnerability in Netgear Wc7500 Firmware, Wc7600 Firmware and Wc9500 Firmware
Certain NETGEAR devices are affected by disclosure of sensitive information.
low complexity
netgear
6.5
2020-10-09 CVE-2020-26923 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
2020-10-09 CVE-2020-26922 Command Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
local
low complexity
netgear CWE-77
6.7
2020-04-01 CVE-2018-11106 Command Injection vulnerability in Netgear products
NETGEAR has released fixes for a pre-authentication command injection in request_handler.php security vulnerability on the following product models: WC7500, running firmware versions prior to 6.5.3.5; WC7520, running firmware versions prior to 2.5.0.46; WC7600v1, running firmware versions prior to 6.5.3.5; WC7600v2, running firmware versions prior to 6.5.3.5; and WC9500, running firmware versions prior to 6.5.3.5.
network
low complexity
netgear CWE-77
critical
9.8