Vulnerabilities > Netgear > Wnd930 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-28 | CVE-2017-18863 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command execution via a PHP form. | 3.6 |
| 2020-04-27 | CVE-2018-21097 | Out-of-bounds Write vulnerability in Netgear products Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. | 7.5 |
| 2020-04-27 | CVE-2018-21096 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear products Certain NETGEAR devices are affected by CSRF. | 4.9 |
| 2020-04-27 | CVE-2018-21094 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. | 7.5 |
| 2020-04-22 | CVE-2018-21120 | Cross-Site Request Forgery (CSRF) vulnerability in Netgear products Certain NETGEAR devices are affected by CSRF. | 6.0 |
| 2020-04-21 | CVE-2017-18805 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 4.6 |
| 2020-04-21 | CVE-2017-18806 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 4.6 |
| 2017-04-21 | CVE-2016-1556 | Information Exposure vulnerability in Netgear products Information disclosure in Netgear WN604 before 3.3.3; WNAP210, WNAP320, WNDAP350, and WNDAP360 before 3.5.5.0; and WND930 before 2.0.11 allows remote attackers to read the wireless WPS PIN or passphrase by visiting unauthenticated webpages. | 5.0 |