Vulnerabilities > Netgear > Wnr2020 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-26 | CVE-2021-45551 | Command Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.5 |
| 2021-12-26 | CVE-2021-45640 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. | 6.5 |
| 2021-12-26 | CVE-2021-45641 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by incorrect configuration of security settings. | 6.5 |
| 2021-12-26 | CVE-2021-45657 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by server-side injection. | 4.6 |
| 2021-08-11 | CVE-2021-38514 | Unspecified vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 4.0 |
| 2020-12-30 | CVE-2020-35842 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 3.5 |
| 2020-12-30 | CVE-2020-35841 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 3.5 |
| 2020-12-30 | CVE-2020-35840 | Cross-site Scripting vulnerability in Netgear products Certain NETGEAR devices are affected by stored XSS. | 3.5 |
| 2020-12-30 | CVE-2020-35799 | Out-of-bounds Write vulnerability in Netgear products Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. | 7.5 |
| 2020-10-13 | CVE-2020-17409 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Netgear products This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R6120, R6080, R6260, R6220, R6020, JNR3210, and WNR2020 routers with firmware 1.0.66. | 3.3 |