Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-20366

Malware in sbrugna...

6.5CVSS6.6AI score0.0062EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-20365

Malware in sbrugna...

8.8CVSS8.8AI score0.00898EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 5:33 p.m.13 views

CVE-2020-27873

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 8...

6.5CVSS5.8AI score0.0062EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 3:1 p.m.10 views

CVE-2020-27872

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the minihttpd service, which listens on TCP port 80 by...

8.8CVSS7.1AI score0.00898EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/01/25 12:0 a.m.7 views

The vulnerability of NETGEAR Wi-Fi router microprogramming systems, such as R6260, R6800, R6700v2, R6900v2, R7450, and AC2100, arises from the possibility of data writing beyond the buffer, allowing attackers to execute arbitrary commands.

The vulnerability of the microprogrammed Wi-Fi router software from NETGEAR, including models R6260, R6800, R6700v2, R6900v2, R7450, and AC2100, lies in the fact that data is written beyond the buffer. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

8.3CVSS8AI score0.00456EPSS
Exploits0References3Affected Software8
ATTACKERKB
ATTACKERKB
added 2021/12/26 1:15 a.m.2 views

CVE-2021-45672

Certain NETGEAR devices are affected by Stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0.48, R6080 before 1.0.0.48, R6120 before 1.0.0.76, R6220 before 1.1.0.110, R6230 before 1.1.0.110, R6260 before 1.1.0.78, R6800 before 1.2.0.76, R6900v2 before 1.2.0.7...

4.8CVSS5.8AI score0.00365EPSS
Exploits0References2
OSV
OSV
added 2021/02/04 5:15 p.m.2 views

CVE-2020-27873

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 8...

6.5CVSS6.5AI score0.0062EPSS
Exploits0References2
NVD
NVD
added 2021/02/04 5:15 p.m.21 views

CVE-2020-27873

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 8...

6.5CVSS0.0062EPSS
Exploits0References2
OSV
OSV
added 2021/02/04 5:15 p.m.3 views

CVE-2020-27872

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the minihttpd service, which listens on TCP port 80 by...

8.8CVSS5.5AI score0.00898EPSS
Exploits0References2
NVD
NVD
added 2021/02/04 5:15 p.m.23 views

CVE-2020-27872

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the minihttpd service, which listens on TCP port 80 by...

8.8CVSS0.00898EPSS
Exploits0References2
Prion
Prion
added 2021/02/04 5:15 p.m.18 views

Authentication flaw

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the minihttpd service, which listens on TCP port 80 by...

5.8CVSS9AI score0.00898EPSS
Exploits0References2Affected Software19
Prion
Prion
added 2021/02/04 5:15 p.m.24 views

Design/Logic Flaw

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 8...

3.3CVSS6.2AI score0.0062EPSS
Exploits0References2Affected Software19
Cvelist
Cvelist
added 2021/02/04 4:45 p.m.24 views

CVE-2020-27873

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.621.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 8...

6.5CVSS6.2AI score0.0062EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/02/04 12:0 a.m.6 views

NETGEAR R7450 安全漏洞

NETGEAR R7450 is a router from Netgear, Inc. A hardware device that connects two or more networks and acts as a gateway between networks, the NETGEAR R7450 is vulnerable to an authentication bypass vulnerability that stems from improper state tracking during password recovery. An attacker could...

8.8CVSS7.3AI score0.00898EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/02/04 12:0 a.m.8 views

NETGEAR R7450 访问控制错误漏洞

The NETGEAR R7450 is a router from Netgear, Inc. A hardware device that connects two or more networks and acts as a gateway between networks.Netgear R7450 1.2.0.621.0.1 routers is vulnerable to an access control error that lacks proper access control and could be exploited by an attacker to...

6.5CVSS6.5AI score0.0062EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2021/01/18 12:0 a.m.46 views

NETGEAR R7450 SOAP API RecoverAdminPassword Improper Access Control Information Disclosure Vulnerability

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 80 by default...

6.5CVSS2.6AI score0.0062EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/01/18 12:0 a.m.50 views

NETGEAR R7450 Password Recovery External Control of Critical State Data Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the minihttpd service, which listens on TCP port 80 by default. The issue...

8.8CVSS3.3AI score0.00898EPSS
Exploits0References1
Rows per page
Query Builder