CVE-2020-11769

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK20 before 2.3.5.26, RBR40 before 2.3.5.30,...

CVE-2019-20767

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.60, D3600 before 1.0.0.75, D6000 before 1.0.0.75, R9000 before 1.0.4.26, R8900 before 1.0.4.26, R7800 before 1.0.2.52, WNDR4500v3 before 1.0.0.58, WNDR4300v2 before...

CVE-2020-11772

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, XR500 before 2.3.2.56, and XR700 before 1.0.1.10...

CVE-2020-11771

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, XR500 before 2.3.2.56, and XR700 before 1.0.1.10...

The vulnerability of Netgear’s networking hardware’s microprogramming software, related to insufficient validation of input data, allows a intruder to trigger a service failure.

The vulnerability of Netgear’s networking hardware’s microprogramming software is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by sending specially crafted SOAP requests...

NETGEAR Devices RCE Vulnerability

Several Netgear devices include unauthenticated webpages that pass form input directly to the command-line, allowing for a command injection attack in SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respecti...

VulnCheck KEV: CVE-2017-5521

Multiple NETGEAR devices are prone to admin password disclosure via simple crafted requests to the web management server...

CVE-2016-1555

1 boardData102.php, 2 boardData103.php, 3 boardDataJP.php, 4 boardDataNA.php, and 5 boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 before 3.5.5.0 allow remote attackers to execute arbitrary commands...

CVE-2016-1557

Netgear WNAP320, WNDAP350, and WNDAP360 before 3.5.5.0 reveal wireless passwords and administrative usernames and passwords over SNMP...

CVE-2016-1556

Information disclosure in Netgear WN604 before 3.3.3; WNAP210, WNAP320, WNDAP350, and WNDAP360 before 3.5.5.0; and WND930 before 2.0.11 allows remote attackers to read the wireless WPS PIN or passphrase by visiting unauthenticated webpages...

Command injection

1 boardData102.php, 2 boardData103.php, 3 boardDataJP.php, 4 boardDataNA.php, and 5 boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 before 3.5.5.0 allow remote attackers to execute arbitrary commands...

CVE-2016-1555

1 boardData102.php, 2 boardData103.php, 3 boardDataJP.php, 4 boardDataNA.php, and 5 boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 before 3.5.5.0 allow remote attackers to execute arbitrary commands...

NETGEAR Multiple Product Catalog Traversal Vulnerability

NETGEAR is an American Netgear company, a manufacturer of computer networking equipment and other computer hardware. NETGEAR FVS336Gv3, FVS318N, FVS318Gv2, SRX5308 devices with firmware versions prior to 4.3.3-8 have a directory traversal vulnerability in scgi-bin/platform.cgi that could allow a...

CVE-2016-10106

Directory traversal vulnerability in scgi-bin/platform.cgi on NETGEAR FVS336Gv3, FVS318N, FVS318Gv2, and SRX5308 devices with firmware before 4.3.3-8 allows remote authenticated users to read arbitrary files via a .. dot dot in the thispage parameter, as demonstrated by reading the /etc/shadow fi...

Information Disclosure Vulnerability in Multiple Netgear Devices

Netgear is a global leader in enterprise networking solutions and a champion of digital home networking applications. An information disclosure vulnerability exists in a number of Netgear devices, where the device has an authentication bypass page that can be exploited by an attacker to obtain...

Information Disclosure Vulnerability in Multiple Netgear Devices (CNVD-2016-01689)

Netgear is a global leader in enterprise networking solutions and a champion of digital home networking applications. An information disclosure vulnerability exists in several Netgear devices, which can be exploited by an attacker to gain access to administrator accounts and wireless passwords...

PT-2016-3197 · NetGear · Wnap210V2 +6

Name of the Vulnerable Software and Affected Versions: Netgear WN604 versions prior to 3.3.3 Netgear WN802Tv2 versions prior to 3.5.5.0 Netgear WNAP210v2 versions prior to 3.5.5.0 Netgear WNAP320 versions prior to 3.5.5.0 Netgear WNDAP350 versions prior to 3.5.5.0 Netgear WNDAP360 versions prior ...