NETGEAR XR1000v2 安全漏洞

The NETGEAR XR1000v2 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR XR1000v2 that stems from insufficient input validation and could lead to OS command injection...

NETGEAR Orbi 安全漏洞

NETGEAR Orbi is a distributed WiFi system from NETGEAR. A security vulnerability exists in NETGEAR Orbi that stems from an authentication bypass that could cause a local network user to access the router web interface as an administrator...

PT-2026-2627

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default...

PT-2026-2630

An insufficient authentication vulnerability in NETGEAR WiFi range extenders allows a network adjacent attacker with WiFi authentication or a physical Ethernet port connection to bypass the authentication process and access the admin panel...

PT-2026-2626

CVE-2026-0403 An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections. https://t.co/RZjGc6Wp0E...

NETGEAR WiFi range extenders 安全漏洞

NETGEAR WiFi range extenders are a series of WiFi signal extenders from NETGEAR. A security vulnerability exists in NETGEAR WiFi range extenders that stems from insufficient authentication, which could lead to a network-adjacent attacker bypassing authentication and accessing the management panel...

PT-2026-2631

A path traversal vulnerability in NETGEAR WiFi range extenders allows an attacker with LAN authentication to access the router's IP and review the contents of the dynamically generated webproc file, which records the username and password submitted to the router GUI...

PT-2026-2629

CVE-2026-0406 An insufficient input validation vulnerability in the NETGEAR XR1000v2 allows attackers connected to the router's LAN to execute OS command injections. https://t.co/Wc5Mb3XINq...

NETGEAR WiFi range extenders 安全漏洞

NETGEAR WiFi range extenders are a series of WiFi signal extenders from NETGEAR. A security vulnerability exists in NETGEAR WiFi range extenders that stems from path traversal and could allow an attacker to access and view the contents of a webproc file containing a username and password...

CVE-2023-50089

A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication...

CVE-2023-49007

In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd...

CVE-2021-41449

A path traversal attack in web interfaces of Netgear RAX35, RAX38, and RAX40 routers before v1.0.4.102, allows a remote unauthenticated attacker to gain access to sensitive restricted information, such as forbidden files of the web application, via sending a specially crafted HTTP packet...

CVE-2021-31802

NETGEAR R7000 1.0.11.116 devices have a heap-based Buffer Overflow that is exploitable from the local network without authentication. The vulnerability exists within the handling of an HTTP request. An attacker can leverage this to execute code as root. The problem is that a user-provided length...

CVE-2016-10864

NETGEAR EX7000 V1.0.0.421.0.94 devices allow XSS via the SSID...

CVE-2022-38956

An exploitable firmware downgrade vulnerability was discovered on the Netgear WPN824EXT WiFi Range Extender. An attacker can conduct a MITM attack to replace the user-uploaded firmware image with an original old firmware image. This affects Firmware 1.1.11.1.9 and earlier...

CVE-2022-42221

Netgear R6220 v1.1.0.1141.0.1 suffers from Incorrect Access Control, resulting in a command injection vulnerability...

CVE-2022-37234

Netgear Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router R7000-V1.0.11.13410.2.119 is vulnerable to Buffer Overflow via the wl binary in firmware. There is a stack overflow vulnerability caused by strncpy...

CVE-2022-37235

Netgear Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router R7000-V1.0.11.13410.2.119 is vulnerable to Buffer Overflow via the wl binary in firmware. There is a stack overflow vulnerability caused by strncat...

CVE-2022-31937

Netgear N300 wireless router wnr2000v4-V1.0.0.70 was discovered to contain a stack overflow via strcpy in uhttpd...

CVE-2017-18860

Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier,...