11879 matches found
CVE-2025-44650
The CVE-2025-44650 entry concerns Netgear R7000 (v1.3.1.64 10.1.36) and Netgear EAX80 (v1.0.1.70 1.0.2). Root cause is the USERLIMIT_GLOBAL setting being 0 in bftpd.conf, which can permit a Denial-of-Service when unlimited users connect. Concrete details are provided in connected sources (e.g., P...
CVE-2025-52081
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the usbfolder parameter...
CVE-2025-52082
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the readaccess parameter...
CVE-2025-52080
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the sharename parameter...
CVE-2025-52080
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the sharename parameter...
CVE-2025-52082
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the readaccess parameter...
CVE-2025-52080
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the sharename parameter...
CVE-2025-52081
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the usbfolder parameter...
CVE-2025-52081
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the usbfolder parameter...
CVE-2025-52082
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the readaccess parameter...
CVE-2025-52081
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the usbfolder parameter...
CVE-2025-52080
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the sharename parameter...
CVE-2025-52081
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the usbfolder parameter...
CVE-2025-52082
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the readaccess parameter...
PT-2025-29578 · NetGear · Netgear Xr300
Name of the Vulnerable Software and Affected Versions: Netgear XR300 version 1.0.3.38 10.3.30 Description: A stack-based buffer overflow exists in the HTTPD service through the usb device.cgi endpoint when processing POST requests containing the share name parameter. Recommendations: Apply update...
CVE-2025-52082
In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the readaccess parameter...
CVE-2025-52080
Netgear XR300 (V1.0.3.38_10.3.30) is affected by a stack-based buffer overflow in the HTTPD service via usb_device.cgi when processing POST requests that include the share_name parameter. Documented impact is a network-accessible vulnerability with medium severity (CVSS 3.1: 6.5), but the specifi...
CVE-2025-52082
CVE-2025-52082 affects NETGEAR XR300 (V1.0.3.38_10.3.30). The vulnerability is a stack-based buffer overflow in the HTTPD service triggered by POST requests to the usb_device.cgi endpoint when the read_access parameter is processed. Impact is described as potential low/low escalation with network...
CVE-2025-52081
CVE-2025-52081 affects Netgear XR300 routers (V1.0.3.38_10.3.30). It is a stack-based buffer overflow in the HTTPD service triggered by POST requests to the usb_device.cgi endpoint when the usb_folder parameter is processed. The vulnerability stems from improper handling in this endpoint, enablin...
NETGEAR XR300 安全漏洞
The NETGEAR XR300 is the entry-level Nighthawk Pro Gaming series wireless router from NETGEAR. The NETGEAR XR300 suffers from a stack buffer overflow vulnerability that stems from a stack buffer overflow in the HTTPD service when processing a POST request from the usbdevice.cgi endpoint, no detai...