Lucene search
K

148 matches found

Prion
Prion
added 2020/11/02 9:15 p.m.18 views

Design/Logic Flaw

The SIP ALG implementation on NETGEAR Nighthawk R7000 1.0.9.6410.2.64 devices allows remote attackers to communicate with arbitrary TCP and UDP services on a victim's intranet machine, if the victim visits an attacker-controlled web site with a modern browser, aka NAT Slipstreaming. This occurs...

4.3CVSS6.5AI score0.01975EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2020/11/01 3:29 a.m.25 views

CVE-2020-28041

The SIP ALG implementation on NETGEAR Nighthawk R7000 1.0.9.6410.2.64 devices allows remote attackers to communicate with arbitrary TCP and UDP services on a victim's intranet machine, if the victim visits an attacker-controlled web site with a modern browser, aka NAT Slipstreaming. This occurs...

6.6AI score0.01975EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2020/11/01 12:0 a.m.4 views

PT-2020-16904 · NetGear · Netgear Nighthawk R7000

Name of the Vulnerable Software and Affected Versions: NETGEAR Nighthawk R7000 version 1.0.9.64 10.2.64 Description: The issue allows remote attackers to communicate with arbitrary TCP and UDP services on a victim's intranet machine, if the victim visits an attacker-controlled web site with a...

6.5CVSS6.4AI score0.01975EPSS
Exploits1References8
CNVD
CNVD
added 2020/02/25 12:0 a.m.4 views

NETGEAR Nighthawk X10-R9000 Command Injection Vulnerability

The NETGEAR Nighthawk X10-R9000 is a wireless router from NETGEAR. A command injection vulnerability exists in the NETGEAR Nighthawk X10-R9000 using firmware prior to version 1.0.4.26. The vulnerability stems from a network system or product not properly filtering specific elements of externally...

9.8CVSS7.7AI score0.02267EPSS
Exploits1References1
CNVD
CNVD
added 2020/02/25 12:0 a.m.5 views

NETGEAR Nighthawk X10-R9000 Authentication Bypass Vulnerability

The NETGEAR Nighthawk X10-R9000 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR Nighthawk X10-R9000 using firmware versions prior to 1.0.4.26. An attacker could exploit the vulnerability to bypass authentication...

9.1CVSS6.8AI score0.00711EPSS
Exploits1References1
NVD
NVD
added 2020/02/24 7:15 p.m.20 views

CVE-2019-12511

In NETGEAR Nighthawk X10-R9000 prior to 1.0.4.26, an attacker may execute arbitrary system commands as root by sending a specially-crafted MAC address to the "NETGEAR Genie" SOAP endpoint at AdvancedQoS:GetCurrentBandwidthByMAC. Although this requires QoS being enabled, advanced QoS being enabled...

9.8CVSS10AI score0.02267EPSS
Exploits1References1
OSV
OSV
added 2020/02/24 7:15 p.m.4 views

CVE-2019-12513

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname field, an attacker may execute stored XSS attacks against this device. When the malicious DHCP request is received, the device will generate a log entry containing the malicious...

6.1CVSS5.8AI score0.00819EPSS
Exploits1References1
NVD
NVD
added 2020/02/24 7:15 p.m.22 views

CVE-2019-12513

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname field, an attacker may execute stored XSS attacks against this device. When the malicious DHCP request is received, the device will generate a log entry containing the malicious...

6.1CVSS6AI score0.00819EPSS
Exploits1References1
Prion
Prion
added 2020/02/24 7:15 p.m.20 views

Cross site scripting

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execute stored XSS attacks against this device by supplying a malicious X-Forwarded-For header while performing an incorrect login attempt. The value supplied by this header will be inserted into administrative logs, found at Advanc...

4.3CVSS6AI score0.0095EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/02/24 6:16 p.m.24 views

CVE-2019-12513 Stored XSS via DHCP Discover Request Hostname

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname field, an attacker may execute stored XSS attacks against this device. When the malicious DHCP request is received, the device will generate a log entry containing the malicious...

6AI score0.00819EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/02/24 6:16 p.m.23 views

CVE-2019-12511 Root Command Injection via MAC Address in SOAP API

In NETGEAR Nighthawk X10-R9000 prior to 1.0.4.26, an attacker may execute arbitrary system commands as root by sending a specially-crafted MAC address to the "NETGEAR Genie" SOAP endpoint at AdvancedQoS:GetCurrentBandwidthByMAC. Although this requires QoS being enabled, advanced QoS being enabled...

10AI score0.02267EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/02/24 6:16 p.m.31 views

CVE-2019-12510 Auth Bypass Via X-Forwarded-For Header in SOAP API

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may bypass all authentication checks on the device's "NETGEAR Genie" SOAP API "/soap/serversa" by supplying a malicious X-Forwarded-For header of the device's LAN IP address 192.168.1.1 in every request. As a result, an attacker may...

9.4AI score0.00711EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.23 views

The vulnerability of the CGI processor (wlg_adv.cgi) in Netgear Nighthawk’s embedded software allows a hacker to execute arbitrary commands.

The vulnerability of the CGI processor wlgadv.cgi in Netgear Nighthawk router’s embedded software is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

7.7CVSS5.9AI score
Exploits0References2Affected Software15
CNVD
CNVD
added 2019/08/21 12:0 a.m.3 views

NETGEAR Nighthawk M1 Cross-Site Request Forgery Vulnerability

The NETGEAR Nighthawk M1 is a portable wireless router from NETGEAR. A cross-site request forgery vulnerability exists in the NETGEAR Nighthawk M1 MR1100 versions prior to 12.06.03. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a...

8.1CVSS6.8AI score0.00689EPSS
Exploits1References1
CNVD
CNVD
added 2019/08/21 12:0 a.m.4 views

NETGEAR Nighthawk M1 OS Command Injection Vulnerability

The NETGEAR Nighthawk M1 is a portable wireless router from NETGEAR. An operating system command injection vulnerability exists in the NETGEAR Nighthawk M1 MR1100 versions prior to 12.06.03. An attacker can exploit this vulnerability to execute system commands via the web interface...

10CVSS8AI score0.02727EPSS
Exploits1References1
NVD
NVD
added 2019/08/14 9:15 p.m.19 views

CVE-2019-14526

An issue was discovered on NETGEAR Nighthawk M1 MR1100 devices before 12.06.03. The web-interface Cross-Site Request Forgery token is stored in a dynamically generated JavaScript file, and therefore can be embedded in third party pages, and re-used against the Nighthawk web interface. This entire...

8.1CVSS8.2AI score0.00689EPSS
Exploits1References1
OSV
OSV
added 2019/08/14 9:15 p.m.2 views

CVE-2019-14527

An issue was discovered on NETGEAR Nighthawk M1 MR1100 devices before 12.06.03. System commands can be executed, via the web interface, after authentication...

9.8CVSS7.3AI score0.02727EPSS
Exploits1References2
OSV
OSV
added 2019/08/14 9:15 p.m.3 views

CVE-2019-14526

An issue was discovered on NETGEAR Nighthawk M1 MR1100 devices before 12.06.03. The web-interface Cross-Site Request Forgery token is stored in a dynamically generated JavaScript file, and therefore can be embedded in third party pages, and re-used against the Nighthawk web interface. This entire...

8.1CVSS7.2AI score0.00689EPSS
Exploits1References1
Prion
Prion
added 2019/08/14 9:15 p.m.17 views

Design/Logic Flaw

An issue was discovered on NETGEAR Nighthawk M1 MR1100 devices before 12.06.03. The web-interface Cross-Site Request Forgery token is stored in a dynamically generated JavaScript file, and therefore can be embedded in third party pages, and re-used against the Nighthawk web interface. This entire...

5.8CVSS8AI score0.00689EPSS
Exploits1References1Affected Software1
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/08/10 7:59 a.m.148 views

Breaking (Bad) Cross-Site Request Forgery Protection – The Netgear Nighthawk M1

What is CSRF? Cross-site Request Forgery CSRF is a descriptive term, but pretty oblique if you don’t know exactly what it means. Broken down, it’s pretty simple: A malicious web page running in your browser can send requests to other sites. When it sends those requests, it’ll use the current...

10CVSS9.3AI score0.02727EPSS
Exploits2
Rows per page
Query Builder