Vulnerabilities > Netgear > Xr500 Firmware > 2.3.2.40
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-14 | CVE-2021-27253 | Out-of-bounds Write vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. | 8.3 |
| 2021-04-14 | CVE-2021-27252 | OS Command Injection vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. | 8.3 |
| 2021-04-14 | CVE-2021-27251 | Cleartext Transmission of Sensitive Information vulnerability in Netgear products This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. | 8.3 |
| 2021-03-05 | CVE-2021-27254 | Use of Hard-coded Credentials vulnerability in Netgear products This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7800. | 8.3 |
| 2020-04-15 | CVE-2019-20650 | Improper Input Validation vulnerability in Netgear products Certain NETGEAR devices are affected by denial of service. | 5.0 |