EUVD-2023-32035

Malicious code in bioql PyPI...

EUVD-2022-32147

Malicious code in bioql PyPI...

EUVD-2022-32145

Malicious code in bioql PyPI...

EUVD-2025-4095

Malicious code in bioql PyPI...

The vulnerability in the pppoe.cgi script of Netgear DGN2200B router software allows a hacker to execute arbitrary commands.

The vulnerability of the pppoe.cgi script of the Netgear DGN2200B router operating system is related to the failure to take measures to neutralize special elements used in the operating system when processing the pppoeusername parameter. Exploiting this vulnerability allows a remote attacker to...

The vulnerability of the default_version_is_new() function in Netgear’s JWNR2000v2 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the defaultversionisnew function in Netgear’s JWNR2000v2 router software lies in the copying of buffers without checking the size of the input data when processing the host parameter. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrit...

The vulnerability of the sub_41A914() function in Netgear JWNR2000v2 software allows a hacker to cause a service failure.

The vulnerability of the sub41A914 function in Netgear JWNR2000v2 router microprogramming software is related to the copying of buffers without checking the size of the input data when processing the host parameter. Exploiting this vulnerability can allow an attacker to cause service interruption...

CVE-2013-10060 Netgear Routers pppoe.cgi RCE

An authenticated OS command injection vulnerability exists in Netgear routers tested on the DGN2200B model firmware versions 1.0.0.36 and prior via the pppoe.cgi endpoint. A remote attacker with valid credentials can execute arbitrary commands via crafted input to the pppoeusername parameter. Thi...

NETGEAR XR300 Stack Buffer Overflow Vulnerability (CNVD-2025-20496)

The NETGEAR XR300 is the entry-level Nighthawk Pro Gaming series wireless router from NETGEAR. The NETGEAR XR300 suffers from a stack buffer overflow vulnerability that stems from a stack buffer overflow in the HTTPD service when processing a POST request from the usbdevice.cgi endpoint, no detai...

The vulnerability of the apcli_do_enr_pbc_wps function in the Netgear RAX5 router’s built-in software allows a hacker to execute arbitrary commands.

The vulnerability of the apclidoenrpbcwps function in Netgear RAX5 router’s built-in software is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

Unspecified Vulnerability in NETGEAR RAX30 (CNVD-2025-16867)

The NETGEAR RAX30 is a dual-band wireless router from NETGEAR. A security vulnerability exists in NETGEAR RAX30 version V1.0.10.943, which can be exploited by an attacker to potentially cause a denial of service attack...

Netgear RAX30 安全漏洞

The NETGEAR RAX30 is a dual-band wireless router from NETGEAR. A security vulnerability exists in Netgear RAX30 version V1.0.10.94, which can be exploited by an attacker to potentially cause remote code execution...

CVE-2022-44200

Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow via parameters: stamodedns1pri and stamodedns1sec...

CVE-2021-20170

Netgear RAX43 version 1.0.3.96 makes use of hardcoded credentials. It does not appear that normal users are intended to be able to manipulate configuration backups due to the fact that they are encrypted. This encryption is accomplished via a password-protected zip file with a hardcoded password...

CVE-2019-14363

A stack-based buffer overflow in the upnpd binary running on NETGEAR WNDR3400v3 routers with firmware version 1.0.1.181.0.63 allows an attacker to remotely execute arbitrary code via a crafted UPnP SSDP packet...

The vulnerability of the BRS_netgear_success.html component of the NETGEAR WNR2000v5 router’s embedded software allows a hacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the BRSnetgearsuccess.html component of the NETGEAR WNR2000v5 router’s embedded software is related to insufficient protection for service data. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility of the protect...

NETGEAR RAX5 安全漏洞

The NETGEAR RAX5 is a wireless router from NETGEAR. NETGEAR RAX5 suffers from a command injection vulnerability that stems from the failure of the ifname parameter in the apclicancelwps function to correctly filter constructed command special characters, commands, and so on. An attacker can explo...

CVE-2025-4115

A vulnerability classified as critical was found in Netgear JWNR2000v2 1.0.0.11. Affected by this vulnerability is the function defaultversionisnew. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. The vendor was contacted early about this...

NETGEAR JWNR2000 注入漏洞

The NETGEAR JWNR2000v2 is a wireless router from NETGEAR. The NETGEAR JWNR2000v2 suffers from a command injection vulnerability that stems from the sub435E04 function parameter host failing to correctly filter constructor command special characters, commands, and so on. No details of the...

NETGEAR WNR854T cmd.cgi file command execution vulnerability

The NETGEAR WNR854T is a wireless router from NETGEAR. A command execution vulnerability exists in the NETGEAR WNR854T version 1.5.2, which stems from the cmd.cgi file failing to properly filter construct command special characters, commands, and so on. An attacker can exploit this vulnerability ...