Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-48725
A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule() functionality of Netgear RAX30 1.0.11.96 and 1.0.7.78. A specially crafted HTTP request can lead to code execution. An attacker can make an authenticated HTTP request to trigger this vulnera...
NA
CVE-2024-1431
A vulnerability was found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. Affected by this issue is some unknown functionality of the file /debuginfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit h...
Netgear R7000 Firmware 1.0.11.136 10.2.120
NA
CVE-2024-1430
A vulnerability has been found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /currentsetting.htm of the component Web Management Interface. The manipulation leads to information disclosur...
Netgear R7000 Firmware 1.0.11.136 10.2.120
NA
CVE-2023-50089
A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication.
Netgear Wnr2000 Firmware 1.0.0.70
NA
CVE-2023-49007
In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd.
Netgear Rbr750 Firmware
NA
CVE-2023-49693
NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing malicious users to execute arbitrary code.
Netgear Prosafe Network Management System
NA
CVE-2023-49694
A low-privileged OS user with access to a Windows host where NETGEAR ProSAFE Network Management System is installed can create arbitrary JSP files in a Tomcat web application directory. The user can then execute the JSP files under the security context of SYSTEM.
Netgear Prosafe Network Management System
NA
CVE-2022-43654
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR CAX30S routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the token parameter provided to the ss...
NA
CVE-2023-36187
Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated malicious users to execute arbitrary code via crafted URL to httpd.
Netgear Cbr40 Firmware
Netgear Lax20 Firmware
Netgear Mk62 Firmware
Netgear Mr60 Firmware
Netgear Ms60 Firmware
Netgear Rbw30 Firmware
Netgear R6400 Firmware
Netgear R6400v2 Firmware
Netgear R6700v3 Firmware
Netgear R7000 Firmware
Netgear R7000p Firmware
Netgear Rax200 Firmware
Netgear Rax75 Firmware
Netgear Rax80 Firmware
Netgear Rs400 Firmware
NA
CVE-2023-38412
Netgear R6900P v1.3.3.154 exists to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at ia_ap_setting.cgi.
Netgear R6900p Firmware 1.3.3.154
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »