Vulnerabilities > Netgear > Xr500 Firmware > 2.3.2.22

DATE CVE VULNERABILITY TITLE RISK
2020-04-15 CVE-2019-20680 Command Injection vulnerability in Netgear products
Certain NETGEAR devices are affected by command injection by an authenticated user.
low complexity
netgear CWE-77
8.0
8.0
2020-04-15 CVE-2019-20655 Command Injection vulnerability in Netgear Xr500 Firmware and Xr700 Firmware
Certain NETGEAR devices are affected by command injection by an authenticated user.
local
low complexity
netgear CWE-77
7.8
7.8
2020-04-15 CVE-2020-11787 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
4.8
2020-04-15 CVE-2019-20650 Unspecified vulnerability in Netgear products
Certain NETGEAR devices are affected by denial of service.
network
low complexity
netgear
7.5
7.5
2020-04-15 CVE-2019-20640 Out-of-bounds Write vulnerability in Netgear products
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker.
low complexity
netgear CWE-787
8.8
8.8
2020-04-15 CVE-2020-11786 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
4.8
2020-04-15 CVE-2020-11785 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
4.8
2020-04-15 CVE-2020-11784 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
4.8
2020-04-15 CVE-2020-11783 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
4.8
2020-04-15 CVE-2020-11782 Cross-site Scripting vulnerability in Netgear products
Certain NETGEAR devices are affected by stored XSS.
network
low complexity
netgear CWE-79
4.8
4.8