Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear rax43 firmware 1.0.3.96 vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2021-20171
Netgear RAX43 version 1.0.3.96 stores sensitive information in plaintext. All usernames and passwords for the device's associated services are stored in plaintext on the device. For example, the admin password is stored in plaintext in the primary configuration file on the d...
Netgear Rax43 Firmware 1.0.3.96
516
VMScore
CVE-2021-20166
Netgear RAX43 version 1.0.3.96 contains a buffer overrun vulnerability. The URL parsing functionality in the cgi-bin endpoint of the router containers a buffer overrun issue that can redirection control flow of the applicaiton.
Netgear Rax43 Firmware 1.0.3.96
685
VMScore
CVE-2021-20167
Netgear RAX43 version 1.0.3.96 contains a command injection vulnerability. The readycloud cgi application is vulnerable to command injection in the name parameter.
Netgear Rax43 Firmware 1.0.3.96
641
VMScore
CVE-2021-20168
Netgear RAX43 version 1.0.3.96 does not have sufficient protections to the UART interface. A malicious actor with physical access to the device is able to connect to the UART port via a serial connection, login with default credentials, and execute commands as the root user. Thes...
Netgear Rax43 Firmware 1.0.3.96
641
VMScore
CVE-2021-20169
Netgear RAX43 version 1.0.3.96 does not utilize secure communications to the web interface. By default, all communication to/from the device is sent via HTTP, which causes potentially sensitive information (such as usernames and passwords) to be transmitted in cleartext.
Netgear Rax43 Firmware 1.0.3.96
578
VMScore
CVE-2021-20170
Netgear RAX43 version 1.0.3.96 makes use of hardcoded credentials. It does not appear that normal users are intended to be able to manipulate configuration backups due to the fact that they are encrypted. This encryption is accomplished via a password-protected zip file with a ha...
Netgear Rax43 Firmware 1.0.3.96
890
VMScore
CVE-2021-45614
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7000v2 prior to 1.0.0.74, LAX20 prior to 1.1.6.28, MK62 prior to 1.0.6.116, MR60 prior to 1.0.6.116, MS60 prior to 1.0.6.116, RAX15 prior to 1.0.3.96, RAX20 prior to 1.0.3.96, ...
Netgear D7000v2 Firmware
Netgear Lax20 Firmware
Netgear Mk62 Firmware
Netgear Mr60 Firmware
Netgear Ms60 Firmware
Netgear Rax15 Firmware
Netgear Rax20 Firmware
Netgear Rax200 Firmware
Netgear Rax45 Firmware
Netgear Rax50 Firmware
Netgear Rax43 Firmware
Netgear Rax40v2 Firmware
Netgear Rax35v2 Firmware
Netgear Rax75 Firmware
Netgear Rax80 Firmware
Netgear Rbk752 Firmware
Netgear Rbr750 Firmware
Netgear Rbs750 Firmware
Netgear Rbk852 Firmware
Netgear Rbr850 Firmware
Netgear Rbs850 Firmware
Netgear Xr1000 Firmware
890
VMScore
CVE-2021-45613
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 prior to 2.5.0.24, CBR750 prior to 4.6.3.6, D7000v2 prior to 1.0.0.74, LAX20 prior to 1.1.6.28, MK62 prior to 1.0.6.116, MR60 prior to 1.0.6.116, MS60 prior to 1.0.6.116, ...
Netgear Cbr40 Firmware
Netgear Cbr750 Firmware
Netgear D7000v2 Firmware
Netgear Lax20 Firmware
Netgear Mk62 Firmware
Netgear Mr60 Firmware
Netgear Ms60 Firmware
Netgear Rax15 Firmware
Netgear Rax20 Firmware
Netgear Rax200 Firmware
Netgear Rax35v2 Firmware
Netgear Rax40v2 Firmware
Netgear Rax43 Firmware
Netgear Rax45 Firmware
Netgear Rax50 Firmware
Netgear Rax75 Firmware
Netgear Rax80 Firmware
Netgear Rbk752 Firmware
Netgear Rbk852 Firmware
Netgear Rbr750 Firmware
Netgear Rbr850 Firmware
Netgear Rbs750 Firmware
463
VMScore
CVE-2021-45549
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects LAX20 prior to 1.1.6.28, MK62 prior to 1.1.6.122, MR60 prior to 1.1.6.122, MS60 prior to 1.1.6.122, R6400v2 prior to 1.0.4.118, R6700v3 prior to 1.0.4.118, R6900P prior to 1.3.3.140, ...
Netgear Lax20 Firmware
Netgear Mk62 Firmware
Netgear Mr60 Firmware
Netgear Ms60 Firmware
Netgear R6400 Firmware
Netgear R6700 Firmware
Netgear R6900p Firmware
Netgear R7000 Firmware
Netgear R7000p Firmware
Netgear R7850 Firmware
Netgear R7900 Firmware
Netgear R7900p Firmware
Netgear R7960p Firmware
Netgear R8000 Firmware
Netgear R8000p Firmware
Netgear Rax15 Firmware
Netgear Rax20 Firmware
Netgear Rax200 Firmware
Netgear Rax35 Firmware
Netgear Rax40 Firmware
Netgear Rax43 Firmware
Netgear Rax45 Firmware
890
VMScore
CVE-2021-45616
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR750 prior to 3.2.18.2, LAX20 prior to 1.1.6.28, MK62 prior to 1.0.6.116, MR60 prior to 1.0.6.116, MS60 prior to 1.0.6.116, R6900P prior to 1.3.3.140, R7000 prior to 1.0.11.12...
Netgear Cbr750 Firmware
Netgear Lax20 Firmware
Netgear Mk62 Firmware
Netgear Mr60 Firmware
Netgear Ms60 Firmware
Netgear R6900p Firmware
Netgear R7000 Firmware
Netgear R7000p Firmware
Netgear R7850 Firmware
Netgear R7900 Firmware
Netgear R7900p Firmware
Netgear R7960p Firmware
Netgear R8000 Firmware
Netgear R8000p Firmware
Netgear Rax15 Firmware
Netgear Rax20 Firmware
Netgear Rax200 Firmware
Netgear Rax35v2 Firmware
Netgear Rax40v2 Firmware
Netgear Rax43 Firmware
Netgear Rax45 Firmware
Netgear Rax50 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »