88 matches found
CVE-2021-45525
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX7000 before 1.0.1.80, R6400 before 1.0.1.50, R6400v2 before 1.0.4.118, R6700 before 1.0.2.8, R6700v3 before 1.0.4.118, R6900 before 1.0.2.8, R6900P before 1.3.2.124, R7000 before 1.0.9.88, R7000P...
PT-2021-6474 · NetGear · Netgear R6400V2 +14
Name of the Vulnerable Software and Affected Versions: NETGEAR R6400 versions prior to the fixed version NETGEAR R6400v2 versions prior to the fixed version NETGEAR R6700v3 version 1.0.4.120 10.0.91 NETGEAR R6900P versions prior to the fixed version NETGEAR R7000 versions prior to the fixed versi...
CVE-2021-27239
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400 and R6700 firmware version 1.0.4.98 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the upnpd service, which listens on...
CVE-2020-15635
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which...
CVE-2020-15634
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...
CVE-2020-15634
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...
Design/Logic Flaw
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...
Stack overflow
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which...
CVE-2020-15635
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which...
CVE-2020-15634
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmware 1.0.4.8410.0.58. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads...
NETGEAR R6700 Stack Buffer Overflow Vulnerability
The NETGEAR R6700 is an AC1750 Smart WiFi Router. A stack buffer overflow vulnerability exists in the acsd service in the NETGEAR R6700 prior to version 1.0.4.98. The vulnerability stems from a failure to properly validate the length of user-supplied data before copying it to a fixed-length stack...
NETGEAR R6700 httpd strtblupgrade Format String Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of string table file uploads. The issue results from the la...
NETGEAR R6700 acsd Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the acsd service, which listens on TCP port 5916 by default. The issue...
NETGEAR R6700 Buffer Overflow Vulnerability (CNVD-2020-45110)
The NETGEAR R6700 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the UPnP service in the NETGEAR R6700 version V1.0.4.8410.0.58, which stems from the program failing to properly validate the length of user-submitted data before copying it to a fixed stack-based buffe...
NETGEAR R6700 Code Issue Vulnerability
The NETGEAR R6700 is a wireless router from NETGEAR. A code issue vulnerability exists in the UPnP service in the NETGEAR R6700 version V1.0.4.8410.0.58. The vulnerability stems from an improper design or implementation during code development of a network system or product. An attacker could...
NETGEAR R6700 Input Validation Error Vulnerability
The NETGEAR R6700 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR R6700 version V1.0.4.8410.0.58, which originates from the program failing to properly validate user-submitted data. An attacker can exploit the vulnerability to execute arbitrary code...
NETGEAR R6700 Trust Management Issue Vulnerability
The NETGEAR R6700 is a wireless router from NETGEAR. A trust management issue vulnerability exists in File Download HTTPS in the NETGEAR R6700 version V1.0.4.8410.0.58, which originates when the program fails to properly validate the server's certificate. An attacker could exploit this...
NETGEAR R6700 Encryption Issues Vulnerabilities
The NETGEAR R6700 is a wireless router from NETGEAR. A cryptographic issue vulnerability exists in the encryption of the firmware update image in the NETGEAR R6700 V1.0.4.8410.0.58 release, which stems from an incorrect encryption algorithm. An attacker could exploit this vulnerability among othe...
NETGEAR R6700 Buffer Overflow Vulnerability
The NETGEAR R6700 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in NETGEAR R6700 version V1.0.4.8410.0.58. The vulnerability stems from the program failing to properly validate the length of user-supplied data before copying it to a stack-based fixed buffer. An attacke...
CVE-2020-15416
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by...