Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2022-4390
A network misconfiguration is present in versions before 1.0.9.90 of the NETGEAR RAX30 AX2400 series of routers. IPv6 is enabled for the WAN interface by default on these devices. While there are firewall restrictions in place that define access restrictions for IPv4 traffic, the...
Netgear Ax2400 Firmware
9.8
CVSSv3
CVE-2023-50089
A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication.
Netgear Wnr2000 Firmware 1.0.0.70
9.8
CVSSv3
CVE-2023-49007
In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd.
Netgear Rbr750 Firmware
9.8
CVSSv3
CVE-2023-49693
NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing malicious users to execute arbitrary code.
Netgear Prosafe Network Management System
9.8
CVSSv3
CVE-2023-36187
Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated malicious users to execute arbitrary code via crafted URL to httpd.
Netgear Cbr40 Firmware
Netgear Lax20 Firmware
Netgear Mk62 Firmware
Netgear Mr60 Firmware
Netgear Ms60 Firmware
Netgear Rbw30 Firmware
Netgear R6400 Firmware
Netgear R6400v2 Firmware
Netgear R6700v3 Firmware
Netgear R7000 Firmware
Netgear R7000p Firmware
Netgear Rax200 Firmware
Netgear Rax75 Firmware
Netgear Rax80 Firmware
Netgear Rs400 Firmware
9.8
CVSSv3
CVE-2023-38928
Netgear R7100LG 1.0.0.78 exists to contain a command injection vulnerability via the password parameter at usb_remote_invite.cgi.
Netgear R7100lg Firmware 1.0.0.78
9.8
CVSSv3
CVE-2023-34563
netgear R6250 Firmware Version 1.0.4.48 is vulnerable to Buffer Overflow after authentication.
Netgear R6250 Firmware 1.0.4.48
9.8
CVSSv3
CVE-2023-33532
There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an attacker gains web management privileges, they can inject commands into the post request parameters, thereby gaining shell privileges.
Netgear R6250 Firmware 1.0.4.48
9.8
CVSSv3
CVE-2023-30280
Buffer Overflow vulnerability found in Netgear R6900 v.1.0.2.26, R6700v3 v.1.0.4.128, R6700 v.1.0.0.26 allows a remote malicious user to execute arbitrary code and cause a denial ofservice via the getInputData parameter of the fwSchedule.cgi page.
Netgear R6900 Firmware 1.0.2.26
Netgear R6700 Firmware 1.0.0.26
Netgear R6700 Firmware 1.0.4.128
9.8
CVSSv3
CVE-2023-1327
Netgear RAX30 (AX2400), prior to version 1.0.6.74, was affected by an authentication bypass vulnerability, allowing an unauthenticated malicious user to gain administrative access to the device's web management interface by resetting the admin password.
Netgear Rax30 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »