Netgear Latest Vulnerabilities

December 4

Buffer Overflow Vulnerability in Netgear R6900 Router

CVE-2024-12147
Netgear

November 22

NETGEAR RAX30 fing_dil Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-51635
NetgearRax308.8HIGH

NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vulnerability

CVE-2023-51634
NetgearRax307.5HIGH

October 14

Netgear R7000 Vulnerable to Command Injection via RMT_invite.cgi

CVE-2024-35520
NetgearR7000 Firmware6.8MEDIUM

Command Injection Vulnerability in Netgear Devices

CVE-2024-35519
NetgearEx3700 Firmware6.8MEDIUM

Netgear EX6120 v1.0.0.68 vulnerable to Command Injection

CVE-2024-35518
NetgearEx6120 Firmware6.8MEDIUM

October 11

CVE-2024-35517
NetgearXr1000 Firmware7.2HIGH

CVE-2024-35522
NetgearEx3700 Firmware7.2HIGH

August 23

Diagnostics Page Vulnerability Allows Remote Code Execution

CVE-2024-42756
Netgear

August 21

CVE-2024-6814
NetgearProsafe Network Manage...8.8HIGH

CVE-2024-6813
NetgearProsafe Network Manage...8.8HIGH

July 27

Vulnerability in Netgear WN604 Could Allow Remote Code Execution

CVE-2024-7153
NetgearWn604👾

June 7

Password Security Vulnerability in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1

CVE-2024-36789
Netgear

Netgear Router Vulnerability Allows Attackers to Intercept Sensitive Communications

CVE-2024-36788
NetgearWnr614 Firmware4.8MEDIUM

Bypass Authentication Vulnerability in Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1

CVE-2024-36787
Netgear

Netgear router exposed credentials in plaintext

CVE-2024-36790
Netgear

Attackers Can Gain Access to Router's PIN via Implementation Flaw

CVE-2024-36792
Netgear

June 6

Attackers Can Access URLs and Directories Embedded Within Firmware via Unspecified Vectors

CVE-2024-36795
Netgear

Remote Code Execution Vulnerability in NETGEAR ProSAFE Network Management System

CVE-2024-5505
NetgearProsafe Network Manage...8.8HIGH

May 23

Local Privilege Escalation Vulnerability in NETGEAR ProSAFE Network Management System

CVE-2024-5245
NETGEAR

Unrestricted File Upload Remote Code Execution Vulnerability

CVE-2024-5247
NETGEAR

Remote Code Execution Vulnerability in NETGEAR ProSAFE Network Management System

CVE-2024-5246
NETGEAR

May 7

Remote Code Execution Vulnerability in NETGEAR CAX30S Routers

CVE-2022-43654
NetgearCax30s8.8HIGH

Information Disclosure Risk in NETGEAR Multiple Routers

CVE-2021-34983
NetgearMultiple Routers6.5MEDIUM

Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2021-34982
NetgearMultiple Routers8.8HIGH

Remote Code Execution Vulnerability in NETGEAR R7800 Routers

CVE-2021-34947
NetgearR78008.8HIGH

May 3

NETGEAR ProSAFE Network Management System saveNodeLabel Cross-Site Scripting Privilege Escalation Vulnerability

CVE-2023-50231
NetgearProsafe Network Manage...8HIGH

Remote Code Execution Vulnerability in NETGEAR ProSAFE Network Management System

CVE-2023-44450
NetgearProsafe Network Manage...8.8HIGH

Remote Privilege Escalation Vulnerability in NETGEAR ProSAFE Network Management System

CVE-2023-44449
NetgearProsafe Network Manage...8.8HIGH

Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-44445
NetgearCax308.8HIGH

NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability

CVE-2023-41183
NetgearOrbi 7608.8HIGH

NETGEAR ProSAFE Network Management System ZipUtils Directory Traversal Remote Code Execution Vulnerability

CVE-2023-41182
NetgearProsafe Network Manage...7.2HIGH

NETGEAR RAX30 DHCP Server Command Injection Remote Code Execution Vulnerability

CVE-2023-40480
NetgearRax308.8HIGH

NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability

CVE-2023-40479
NetgearRax308.8HIGH

NETGEAR RAX30 Telnet CLI passwd Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-40478
NetgearRax308HIGH

NETGEAR ProSAFE Network Management System createUser Missing Authorization Privilege Escalation Vulnerability

CVE-2023-38102
NetgearProsafe Network Manage...8.8HIGH

NETGEAR ProSAFE Network Management System SettingConfigController Exposed Dangerous Function Remote Code Execution Vulnerability

CVE-2023-38101
NetgearProsafe Network Manage...7.2HIGH

NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation Vulnerability

CVE-2023-38100
NetgearProsafe Network Manage...8.8HIGH

NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code Execution Vulnerability

CVE-2023-38099
NetgearProsafe Network Manage...8.8HIGH

NETGEAR ProSAFE Network Management System UpLoadServlet Unrestricted File Upload Remote Code Execution Vulnerability

CVE-2023-38098
NetgearProsafe Network Manage...8.8HIGH

NETGEAR ProSAFE Network Management System BkreProcessThread Exposed Dangerous Function Remote Code Execution Vulnerability

CVE-2023-38097
NetgearProsafe Network Manage...7.2HIGH

NETGEAR ProSAFE Network Management System MyHandlerInterceptor Authentication Bypass Vulnerability

CVE-2023-38096
NetgearProsafe Network Manage...9.8CRITICAL

NETGEAR ProSAFE Network Management System MFileUploadController Unrestricted File Upload Remote Code Execution Vulnerability

CVE-2023-38095
NetgearProsafe Network Manage...8.8HIGH

NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability

CVE-2023-35722
NetgearRax308.8HIGH

NETGEAR Multiple Routers curl_post Improper Certificate Validation Remote Code Execution Vulnerability

CVE-2023-35721
NetgearMultiple Routers8.1HIGH

NETGEAR RAX30 cmsCli_authenticate Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-34285
NetgearRax308.8HIGH

NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability

CVE-2023-34284
NetgearRax306.3MEDIUM

NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability

CVE-2023-34283
NetgearRax304.6MEDIUM

NETGEAR RAX30 Device Configuration Cleartext Storage Information Disclosure Vulnerability

CVE-2023-27370
NetgearRax305.7MEDIUM

NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability

CVE-2023-27369
NetgearRax308.8HIGH

NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability

CVE-2023-27368
NetgearRax308.8HIGH

NETGEAR RAX30 libcms_cli Command Injection Remote Code Execution Vulnerability

CVE-2023-27367
NetgearRax308HIGH

NETGEAR RAX30 rex_cgi JSON Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2023-27361
NetgearRax306.8MEDIUM

NETGEAR RAX30 lighttpd Misconfiguration Remote Code Execution Vulnerability

CVE-2023-27360
NetgearRax307.5HIGH

NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability

CVE-2023-27358
NetgearRax308.8HIGH

NETGEAR RAX30 GetInfo Missing Authentication Information Disclosure Vulnerability

CVE-2023-27357
NetgearRax306.5MEDIUM

NETGEAR RAX30 logCtrl Command Injection Remote Code Execution Vulnerability

CVE-2023-27356
NetgearRax306.8MEDIUM

April 26

Cleartext Storage of Sensitive Information Vulnerability Affects Netgear DG834Gv5

CVE-2024-4235
Netgear

March 7

Buffer Overflow Vulnerability in Netgear RAX30 Could Lead to Code Execution

CVE-2023-48725
NetgearRax307.2HIGH

February 11

Netgear R7000 Vulnerability: Information Disclosure Risk

CVE-2024-1431
NetgearR7000👾6.5MEDIUM

Vulnerability in Netgear R7000 Could Lead to Information Disclosure

CVE-2024-1430
NetgearR7000👾6.5MEDIUM

November 29

NETGEAR ProSAFE Network Management System Privilege Escalation Via MySQL Server

CVE-2023-49694
NETGEARNETGEAR ProSAFE Networ...7.8HIGH

NETGEAR ProSAFE Network Management System RCE via Unprotected Access to Java Debug Wire Protocol

CVE-2023-49693
NETGEARNETGEAR ProSAFE Networ...9.8CRITICAL

September 1

CVE-2023-36187
NetgearCbr40 Firmware9.8CRITICAL

August 7

CVE-2023-38925
NetgearDc112a Firmware8.8HIGH

CVE-2023-38926
NetgearEx6200 Firmware8.8HIGH

CVE-2023-38928
NetgearR7100lg Firmware9.8CRITICAL

CVE-2023-39550
NetgearJwnr2000v2 Firmware8.8HIGH

CVE-2023-38924
NetgearDgn3500 Firmware6.5MEDIUM

CVE-2023-38412
NetgearR6900p Firmware8.8HIGH

CVE-2023-36499
NetgearXr300 Firmware8.8HIGH

CVE-2023-38921
NetgearWg302v2 Firmware8.8HIGH

CVE-2023-38922
NetgearJwnr2000v2 Firmware8.8HIGH

CVE-2023-38591
NetgearDg834gv5 Firmware8.8HIGH

June 20

CVE-2023-34563
NetgearR6250 Firmware9.8CRITICAL

June 6

CVE-2023-33533
NetgearD6220 Firmware8.8HIGH

CVE-2023-33532
NetgearR6250 Firmware9.8CRITICAL

April 28

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2395
NetgearSRX53086.1MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2396
NetgearSRX53086.1MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2394
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2391
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2393
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2392
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2388
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2389
NetgearSrx53082.4LOW

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2390
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2386
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2387
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2384
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2385
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2383
NetgearSRX53084.8MEDIUM

Netgear SRX5308 denial of service

CVE-2023-2380
NetgearSRX53086.5MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2382
NetgearSRX53084.8MEDIUM

Netgear SRX5308 Web Management Interface cross site scripting

CVE-2023-2381
NetgearSRX53084.8MEDIUM

April 26

CVE-2023-30280
NetgearR6900 Firmware9.8CRITICAL

March 29

CVE-2022-27645
NetgearR6700v38.8HIGH

CVE-2022-27646
NetgearR6700v38HIGH

CVE-2022-27643
NetgearR6700v38.8HIGH

CVE-2022-27647
NetgearR6700v38HIGH

CVE-2022-27642
NetgearR6700v36.3MEDIUM