18 matches found
CVE-2024-52020
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the wangateway parameter at wizfix2.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-51012
Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow via the ipv6pridns parameter at ipv6fix.cgi. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-50998
Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component openvpn.cgi via the openvpnserviceport and openvpnserviceporttun parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2024-50993
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the sysNewPasswd parameter at adminaccount.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
NETGEAR R8500 安全漏洞
The NETGEAR R8500 is a wireless router from NETGEAR. A command injection vulnerability exists in the NETGEAR R8500 v1.0.2.160, which stems from the wangateway parameter in the ether.cgi component failing to correctly filter constructed command special characters, commands, and so on. An attacker...
PT-2024-8269 · NetGear · Netgear R8500
Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Description: The issue is related to a command injection vulnerability in the wan gateway parameter at the bsw fix.cgi endpoint. This vulnerability allows attackers to execute arbitrary OS commands via a crafte...
NETGEAR R8500 安全漏洞
The NETGEAR R8500 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the NETGEAR R8500 v1.0.2.160, which originates from the ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, and ipv6lanlength parameters parameters in the ipv6fix.cgi component. Failure to properly validate th...
NETGEAR R8500 安全漏洞
The NETGEAR R8500 is a wireless router from NETGEAR. A command injection vulnerability exists in the NETGEAR R8500 v1.0.2.160, which stems from the wangateway parameter in the bswfix.cgi component failing to correctly filter constructed command special characters, commands, and so on. An attacker...
NETGEAR R8500 安全漏洞
NETGEAR R8500 is a wireless router from NETGEAR. A security vulnerability exists in NETGEAR R8500 version v1.0.2.160, which originates from the sharename in the usbremotesmbconf.cgi component contains a command injection vulnerability...
PT-2024-8320 · NetGear · Netgear R8500
Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Description: The issue exists due to the lack of measures to neutralize special elements used in the operating system command. This allows a remote attacker to execute arbitrary commands by sending a specially...
PT-2024-8361 · NetGear · Netgear Xr300 +3
Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to a stack overflow in the pptp.cgi script of Netgear routers, specifically...
NETGEAR R8500 安全漏洞
NETGEAR R8500 is a wireless router from NETGEAR. A security vulnerability exists in NETGEAR R8500 version v1.0.2.160, which stems from the opmode, opmodean, and opmodean2 parameters parameters in the wireless.cgi component containing multiple buffer overflow vulnerabilities...
NETGEAR R8500 安全漏洞
NETGEAR R8500 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR R8500 version v1.0.2.160, which stems from the wangateway parameter in the wizfix2.cgi component containing a command injection vulnerability...
NETGEAR R8500 安全漏洞
NETGEAR R8500 is a wireless router from NETGEAR. A security vulnerability exists in NETGEAR R8500 version v1.0.2.160, which originates from a buffer overflow vulnerability contained in the sharename parameter in the usbremotesmbconf.cgi component...
PT-2024-8276 · NetGear · Netgear R8500
Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Description: The issue is related to a command injection vulnerability in the wan gateway parameter at the "wiz fix2.cgi" endpoint. This vulnerability allows attackers to execute arbitrary OS commands via a...
PT-2024-8275 · NetGear · Netgear R8500
Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Description: The issue is related to a command injection vulnerability in the wan gateway parameter at the "genie fix2.cgi" endpoint. This allows attackers to execute arbitrary OS commands via a crafted request...
PT-2024-8363 · NetGear · Netgear Xr300 +3
Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to a stack overflow vulnerability in the genie bpa.cgi script, specifically v...
PT-2024-9811 · NetGear · Netgear R8500
Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Description: The issue is related to a stack overflow in the ipv6 tunnel function when handling the ipv6 static ip parameter. This can be exploited by a remote attacker to cause a Denial of Service DoS using a...