Lucene search
+L

88 matches found

ATTACKERKB
ATTACKERKB
added 2021/12/26 1:15 a.m.3 views

CVE-2021-45525

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX7000 before 1.0.1.80, R6400 before 1.0.1.50, R6400v2 before 1.0.4.118, R6700 before 1.0.2.8, R6700v3 before 1.0.4.118, R6900 before 1.0.2.8, R6900P before 1.3.2.124, R7000 before 1.0.9.88, R7000P...

8.8CVSS5.7AI score0.00869EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/12/03 12:0 a.m.9 views

PT-2021-6474 · NetGear · Netgear R6400V2 +14

Name of the Vulnerable Software and Affected Versions: NETGEAR R6400 versions prior to the fixed version NETGEAR R6400v2 versions prior to the fixed version NETGEAR R6700v3 version 1.0.4.120 10.0.91 NETGEAR R6900P versions prior to the fixed version NETGEAR R7000 versions prior to the fixed versi...

8.8CVSS8.9AI score0.25114EPSS
Exploits0References7
Cvelist
Cvelist
added 2021/03/29 9:5 p.m.52 views

CVE-2021-27239

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400 and R6700 firmware version 1.0.4.98 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the upnpd service, which listens on...

8.8CVSS9.1AI score0.00746EPSS
Exploits0References2
NVD
NVD
added 2020/08/20 1:17 a.m.31 views

CVE-2020-15635

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which...

8.8CVSS8.9AI score0.02644EPSS
Exploits0References2
NVD
NVD
added 2020/08/20 1:17 a.m.25 views

CVE-2020-15634

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...

6.3CVSS6.6AI score0.01386EPSS
Exploits0References2
OSV
OSV
added 2020/08/20 1:17 a.m.6 views

CVE-2020-15634

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...

6.3CVSS6.9AI score0.01386EPSS
Exploits0References2
Prion
Prion
added 2020/08/20 1:17 a.m.15 views

Design/Logic Flaw

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...

5.8CVSS6.5AI score0.01386EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/08/20 1:17 a.m.16 views

Stack overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which...

8.3CVSS8.8AI score0.02644EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/08/19 8:55 p.m.43 views

CVE-2020-15635

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which...

8.8CVSS8.8AI score0.02644EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/08/19 8:55 p.m.22 views

CVE-2020-15634

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...

6.3CVSS6.6AI score0.01386EPSS
Exploits0References2
CNVD
CNVD
added 2020/08/05 12:0 a.m.3 views

NETGEAR R6700 Stack Buffer Overflow Vulnerability

The NETGEAR R6700 is an AC1750 Smart WiFi Router. A stack buffer overflow vulnerability exists in the acsd service in the NETGEAR R6700 prior to version 1.0.4.98. The vulnerability stems from a failure to properly validate the length of user-supplied data before copying it to a fixed-length stack...

8.8CVSS7.9AI score0.02644EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/08/04 12:0 a.m.32 views

NETGEAR R6700 httpd strtblupgrade Format String Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads. The issue results from the la...

6.3CVSS1.3AI score0.01386EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/08/04 12:0 a.m.44 views

NETGEAR R6700 acsd Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which listens on TCP port 5916 by default. The issue...

8.8CVSS4.5AI score0.02644EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/03 12:0 a.m.8 views

NETGEAR R6700 Buffer Overflow Vulnerability (CNVD-2020-45110)

The NETGEAR R6700 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the UPnP service in the NETGEAR R6700 version V1.0.4.8410.0.58, which stems from the program failing to properly validate the length of user-submitted data before copying it to a fixed stack-based buffe...

8.8CVSS7.8AI score0.87343EPSS
Exploits2References1
CNVD
CNVD
added 2020/07/30 12:0 a.m.5 views

NETGEAR R6700 Code Issue Vulnerability

The NETGEAR R6700 is a wireless router from NETGEAR. A code issue vulnerability exists in the UPnP service in the NETGEAR R6700 version V1.0.4.8410.0.58. The vulnerability stems from an improper design or implementation during code development of a network system or product. An attacker could...

8.8CVSS7.6AI score0.84676EPSS
Exploits2References1
CNVD
CNVD
added 2020/07/30 12:0 a.m.3 views

NETGEAR R6700 Input Validation Error Vulnerability

The NETGEAR R6700 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR R6700 version V1.0.4.8410.0.58, which originates from the program failing to properly validate user-submitted data. An attacker can exploit the vulnerability to execute arbitrary code...

8.8CVSS7.4AI score0.01925EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/30 12:0 a.m.2 views

NETGEAR R6700 Trust Management Issue Vulnerability

The NETGEAR R6700 is a wireless router from NETGEAR. A trust management issue vulnerability exists in File Download HTTPS in the NETGEAR R6700 version V1.0.4.8410.0.58, which originates when the program fails to properly validate the server's certificate. An attacker could exploit this...

8.8CVSS7.4AI score0.01431EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/30 12:0 a.m.3 views

NETGEAR R6700 Encryption Issues Vulnerabilities

The NETGEAR R6700 is a wireless router from NETGEAR. A cryptographic issue vulnerability exists in the encryption of the firmware update image in the NETGEAR R6700 V1.0.4.8410.0.58 release, which stems from an incorrect encryption algorithm. An attacker could exploit this vulnerability among othe...

8.8CVSS7.4AI score0.00915EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/30 12:0 a.m.4 views

NETGEAR R6700 Buffer Overflow Vulnerability

The NETGEAR R6700 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in NETGEAR R6700 version V1.0.4.8410.0.58. The vulnerability stems from the program failing to properly validate the length of user-supplied data before copying it to a stack-based fixed buffer. An attacke...

6.3CVSS8AI score0.01285EPSS
Exploits0References1
NVD
NVD
added 2020/07/28 6:15 p.m.22 views

CVE-2020-15416

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by...

8.8CVSS9AI score0.06419EPSS
Exploits0References1
Rows per page
Query Builder