Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear netgear router vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-27853
NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a format string vulnerability in a SOAP service that could allow an malicious user to execute arbitrary code on the device.
Netgear Rax30 Firmware
10
CVSSv2
CVE-2016-10174
The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated malicious user to achieve remote code execution.
Netgear Wnr2000v5 Firmware
2 EDB exploits
10
CVSSv2
CVE-2006-1002
NETGEAR WGT624 Wireless DSL router has a default account of super_username "Gearguy" and super_passwd "Geardog", which allows remote malicious users to modify the configuration. NOTE: followup posts have suggested that this might not occur with all WGT624 rout...
Netgear Wgt624
NA
CVE-2023-28337
When uploading a firmware image to a Netgear Nighthawk Wifi6 Router (RAX30), a hidden “forceFWUpdate” parameter may be provided to force the upgrade to complete and bypass certain validation checks. End users can use this to upload modified, unofficial, and potentiall...
Netgear Rax30 Firmware
5
CVSSv2
CVE-2016-10175
The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRS_netgear_success.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows rese...
Netgear Wnr2000v5 Firmware
1 EDB exploit
NA
CVE-2022-46423
An exploitable firmware modification vulnerability exists on the Netgear WNR2000v1 router. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing malicious users to execute arbitrary code or cause a ...
Netgear Wnr2000 Firmware
NA
CVE-2023-28338
Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content-Type” of “multipartboundary=” will result in the request body being written to “/tmp/mulipartFile” on the device itself. A sufficiently large ...
Netgear Rax30 Firmware
NA
CVE-2022-31937
Netgear N300 wireless router wnr2000v4-V1.0.0.70 exists to contain a stack overflow via strcpy in uhttpd.
Netgear Wnr2000v4 Firmware 1.0.0.70
5
CVSSv2
CVE-2022-31876
netgear wnap320 router WNAP320_V2.0.3_firmware is vulnerable to Incorrect Access Control via /recreate.php, which can leak all users cookies.
Netgear Wnap320 Firmware 2.0.3
7.8
CVSSv2
CVE-2006-4143
Netgear FVG318 running firmware 1.0.40 allows remote malicious users to cause a denial of service (router reset) via TCP packets with bad checksums.
Netgear Fvg318 1.0.40
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »