Vulnerabilities > Netgear > Wnr3500L Firmware

DATE CVE VULNERABILITY TITLE RISK
2019-11-13 CVE-2013-3517 Cross-site Scripting vulnerability in Netgear Wnr3500L Firmware and Wnr3500U Firmware
Cross-site scripting (XSS) vulnerability in NETGEAR WNR3500U and WNR3500L.
network
netgear CWE-79
3.5
3.5
2019-11-13 CVE-2013-4657 Path Traversal vulnerability in Netgear Wnr3500L Firmware and Wnr3500U Firmware
Symlink Traversal vulnerability in NETGEAR WNR3500U and WNR3500L due to misconfiguration in the SMB service.
network
low complexity
netgear CWE-22
critical
 10.0
10
2019-10-09 CVE-2019-17372 Improper Authentication vulnerability in Netgear products
Certain NETGEAR devices allow remote attackers to disable all authentication requirements by visiting genieDisableLanChanged.cgi.
network
netgear CWE-287
4.3
4.3