Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear netgear router vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-31876
netgear wnap320 router WNAP320_V2.0.3_firmware is vulnerable to Incorrect Access Control via /recreate.php, which can leak all users cookies.
Netgear Wnap320 Firmware 2.0.3
8.8
CVSSv3
CVE-2021-20166
Netgear RAX43 version 1.0.3.96 contains a buffer overrun vulnerability. The URL parsing functionality in the cgi-bin endpoint of the router containers a buffer overrun issue that can redirection control flow of the applicaiton.
Netgear Rax43 Firmware 1.0.3.96
8.8
CVSSv3
CVE-2020-10924
This vulnerability allows network-adjacent malicious users to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The ...
Netgear R6700 Firmware 1.0.4.84 10.0.58
1 Metasploit module
8.8
CVSSv3
CVE-2020-10923
This vulnerability allows network-adjacent malicious users to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UPnP service, which listens ...
Netgear R6700 Firmware 1.0.4.84 10.0.58
1 Metasploit module
8.8
CVSSv3
CVE-2020-11551
An issue exists on NETGEAR Orbi Tri-Band Business WiFi Add-on Satellite (SRS60) AC3000 V2.5.1.106, Outdoor Satellite (RBS50Y) V2.5.1.106, and Pro Tri-Band Business WiFi Router (SRR60) AC3000 V2.5.1.106. The administrative SOAP interface allows an unauthenticated remote write of a...
Netgear Rbs50y Firmware 2.5.1.106
Netgear Srr60 Firmware 2.5.1.106
Netgear Srs60 Firmware 2.5.1.106
1 Github repository
8.8
CVSSv3
CVE-2020-11549
An issue exists on NETGEAR Orbi Tri-Band Business WiFi Add-on Satellite (SRS60) AC3000 V2.5.1.106, Outdoor Satellite (RBS50Y) V2.5.1.106, and Pro Tri-Band Business WiFi Router (SRR60) AC3000 V2.5.1.106. The root account has the same password as the Web-admin component. Thus, by e...
Netgear Rbs50y Firmware 2.5.1.106
Netgear Srr60 Firmware 2.5.1.106
Netgear Srs60 Firmware 2.5.1.106
1 Github repository
6.5
CVSSv3
CVE-2020-11550
An issue exists on NETGEAR Orbi Tri-Band Business WiFi Add-on Satellite (SRS60) AC3000 V2.5.1.106, Outdoor Satellite (RBS50Y) V2.5.1.106, and Pro Tri-Band Business WiFi Router (SRR60) AC3000 V2.5.1.106. The administrative SOAP interface allows an unauthenticated remote leak of se...
Netgear Rbs50y Firmware 2.5.1.106
Netgear Srr60 Firmware 2.5.1.106
Netgear Srs60 Firmware 2.5.1.106
1 Github repository
8.8
CVSSv3
CVE-2019-13395
The Voo branded NETGEAR CG3700b custom firmware V2.02.03 allows CSRF against all /goform/ URIs. An attacker can modify all settings including WEP/WPA/WPA2 keys, restore the router to factory settings, or even upload an entire malicious configuration file.
Netgear Cg3700b Firmware 2.02.03
9.4
CVSSv3
CVE-2019-17137
This vulnerability allows network-adjacent malicious users to bypass authentication on affected installations of NETGEAR AC1200 R6220 Firmware version 1.1.0.86 Smart WiFi Router. Authentication is not required to exploit this vulnerability. The specific flaw exists within the pro...
Netgear Ac1200 R6220 Firmware 1.1.0.86
1 Github repository
9.8
CVSSv3
CVE-2013-3072
An Authentication Bypass vulnerability exists in NETGEAR Centria WNDR4700 Firmware 1.0.0.34 in http://<router_ip>/apply.cgi?/hdd_usr_setup.htm that when visited by any user, authenticated or not, causes the router to no longer require a password to access the web administra...
Netgear Wndr4700 Firmware 1.0.0.34
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »