Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear prosafe network management system vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-49693
NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing malicious users to execute arbitrary code.
Netgear Prosafe Network Management System
9.8
CVSSv3
CVE-2021-27274
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MFileUploadController clas...
Netgear Prosafe Network Management System 1.6.0.26
9.6
CVSSv3
CVE-2016-1524
Multiple unrestricted file upload vulnerabilities in NETGEAR Management System NMS300 1.5.0.11 and previous versions allow remote malicious users to execute arbitrary Java code by using (1) fileUpload.do or (2) lib-1.0/external/flash/fileUpload.do to upload a JSP file, and then a...
Netgear Prosafe Network Management Software 300
1 EDB exploit
1 Article
8.8
CVSSv3
CVE-2021-27273
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. Th...
Netgear Prosafe Network Management System 1.6.0.26
8.6
CVSSv3
CVE-2016-1525
Directory traversal vulnerability in data/config/image.do in NETGEAR Management System NMS300 1.5.0.11 and previous versions allows remote authenticated users to read arbitrary files via a .. (dot dot) in the realName parameter.
Netgear Prosafe Network Management Software 300 1.5.0.11
2 EDB exploits
1 Article
8.3
CVSSv3
CVE-2021-27275
This vulnerability allows remote malicious users to disclose sensitive information and delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentic...
Netgear Prosafe Network Management System 1.6.0.26
7.8
CVSSv3
CVE-2023-49694
A low-privileged OS user with access to a Windows host where NETGEAR ProSAFE Network Management System is installed can create arbitrary JSP files in a Tomcat web application directory. The user can then execute the JSP files under the security context of SYSTEM.
Netgear Prosafe Network Management System
7.1
CVSSv3
CVE-2021-27272
This vulnerability allows remote malicious users to delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. Th...
Netgear Prosafe Network Management System 1.6.0.26
7.1
CVSSv3
CVE-2021-27276
This vulnerability allows remote malicious users to delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. Th...
Netgear Prosafe Network Management System 1.6.0.26
NA
CVE-2023-50231
NETGEAR ProSAFE Network Management System saveNodeLabel Cross-Site Scripting Privilege Escalation Vulnerability. This vulnerability allows remote malicious users to escalate privileges on affected installations of NETGEAR ProSAFE Network Management System. Minimal user interactio...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »