Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-49694
A low-privileged OS user with access to a Windows host where NETGEAR ProSAFE Network Management System is installed can create arbitrary JSP files in a Tomcat web application directory. The user can then execute the JSP files under the security context of SYSTEM.
Netgear Prosafe Network Management System
NA
CVE-2023-36187
Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated malicious users to execute arbitrary code via crafted URL to httpd.
Netgear Cbr40 Firmware
Netgear Lax20 Firmware
Netgear Mk62 Firmware
Netgear Mr60 Firmware
Netgear Ms60 Firmware
Netgear Rbw30 Firmware
Netgear R6400 Firmware
Netgear R6400v2 Firmware
Netgear R6700v3 Firmware
Netgear R7000 Firmware
Netgear R7000p Firmware
Netgear Rax200 Firmware
Netgear Rax75 Firmware
Netgear Rax80 Firmware
Netgear Rs400 Firmware
NA
CVE-2023-38591
Netgear DG834Gv5 1.6.01.34 exists to contain multiple buffer overflows via the wla_ssid and wla_temp_ssid parameters at bsw_ssid.cgi.
Netgear Dg834gv5 Firmware 1.6.01.34
NA
CVE-2023-39550
Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the http_passwd and http_username parameters in the check_auth function.
Netgear Jwnr2000v2 Firmware 1.0.0.11
Netgear Xwn5001 Firmware 0.4.1.1
Netgear Xavn2001v2 Firmware 0.4.0.7
NA
CVE-2023-38412
Netgear R6900P v1.3.3.154 exists to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at ia_ap_setting.cgi.
Netgear R6900p Firmware 1.3.3.154
NA
CVE-2023-38921
Netgear WG302v2 v5.2.9 and WAG302v2 v5.1.19 were discovered to contain multiple command injection vulnerabilities in the upgrade_handler function via the firmwareRestore and firmwareServerip parameters.
Netgear Wg302v2 Firmware 5.2.9
Netgear Wag302v2 Firmware 5.1.19
NA
CVE-2023-38922
Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the http_passwd and http_username parameters in the update_auth function.
Netgear Jwnr2000v2 Firmware 1.0.0.11
Netgear Xwn5001 Firmware 0.4.1.1
Netgear Xavn2001v2 Firmware 0.4.0.7
NA
CVE-2023-38924
Netgear DGN3500 1.1.00.37 exists to contain a buffer overflow via the http_password parameter at setup.cgi.
Netgear Dgn3500 Firmware 1.1.00.37
NA
CVE-2023-38925
Netgear DC112A 1.0.0.64, EX6200 1.0.3.94 and R6300v2 1.0.4.8 were discovered to contain a buffer overflow via the http_passwd parameter in password.cgi.
Netgear Dc112a Firmware 1.0.0.64
Netgear Ex6200 Firmware 1.0.3.94
Netgear R6300v2 Firmware 1.0.4.8
NA
CVE-2023-38926
Netgear EX6200 v1.0.3.94 exists to contain a buffer overflow via the wla_temp_ssid parameter at acosNvramConfig_set.
Netgear Ex6200 Firmware 1.0.3.94
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »