Lucene search
K

12042 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/01/30 5:23 a.m.6 views

Undocumented "TelnetEnable" functionality of End of Service NETGEAR products

Overview Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box. Inclusion of Undocumented Features or Chicken Bits CWE-1242 - CVE-2026-24714 Misato Ito, Daichi Uezono, Ryu Kuki, Iwaki Miyamoto, Takayuki Sasaki,...

8.7CVSS5.9AI score0.00228EPSS
Exploits0References4
NVD
NVD
added 2026/01/30 5:16 a.m.10 views

CVE-2026-24714

Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box...

8.7CVSS0.00228EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/30 3:53 a.m.9 views

EUVD-2026-5018

Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box...

8.7CVSS5.9AI score0.00228EPSS
Exploits0References2
CVE
CVE
added 2026/01/30 3:53 a.m.52 views

CVE-2026-24714

The CVE-2026-24714 entry concerns end-of-service NETGEAR devices (notably PR2000) that expose an undocumented TelnetEnable feature. A magic packet on the LAN can activate the Telnet service, enabling interactive access. The Red Hat/NVD/JVN/CIRCL and CVE records confirm the existence of this funct...

8.7CVSS5.9AI score0.00228EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/30 3:53 a.m.32 views

CVE-2026-24714

Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box...

8.7CVSS0.00228EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/30 3:53 a.m.5 views

CVE-2026-24714

Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box...

8.7CVSS5.9AI score0.00228EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/30 12:0 a.m.6 views

NETGEAR PR2000 security vulnerabilities

NETGEAR PR2000 is a wireless router produced by NETGEAR, a company in the United States. The NETGEAR PR2000 has a security vulnerability, which stems from a flaw in the TelnetEnable function...

8.7CVSS7.1AI score0.00228EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.11 views

PT-2026-5376

Name of the Vulnerable Software and Affected Versions NETGEAR affected versions not specified Description Certain end-of-service NETGEAR products feature a “TelnetEnable” functionality. This functionality permits a magic packet to activate the telnet service on the device, potentially leading to...

8.7CVSS7.1AI score0.00228EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/01/29 3:26 a.m.8 views

CVE-2022-40619

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the LAN interface of affected devices. This interface is vulnerable to unauthenticated arbitrary command injection through the funjsqaccesstoken parameter. This affects R6230 before...

7.7CVSS6AI score0.02233EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/29 3:26 a.m.8 views

CVE-2022-40620

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, does not properly validate TLS certificates when downloading update packages through its auto-update mechanism. An attacker suitably positioned on the network could intercept the update request and deliver a...

7.7CVSS6.4AI score0.00274EPSS
Exploits1References1
OSV
OSV
added 2026/01/28 7:16 p.m.4 views

CVE-2022-40620

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, does not properly validate TLS certificates when downloading update packages through its auto-update mechanism. An attacker suitably positioned on the network could intercept the update request and deliver a...

7.7CVSS6.3AI score0.00274EPSS
Exploits1References2
OSV
OSV
added 2026/01/28 7:16 p.m.5 views

CVE-2022-40619

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the LAN interface of affected devices. This interface is vulnerable to unauthenticated arbitrary command injection through the funjsqaccesstoken parameter. This affects R6230 before...

7.7CVSS5.9AI score0.02233EPSS
Exploits1References2
NVD
NVD
added 2026/01/28 7:16 p.m.8 views

CVE-2022-40619

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the LAN interface of affected devices. This interface is vulnerable to unauthenticated arbitrary command injection through the funjsqaccesstoken parameter. This affects R6230 before...

7.7CVSS0.02233EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/28 12:0 a.m.20 views

CVE-2022-40620

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, does not properly validate TLS certificates when downloading update packages through its auto-update mechanism. An attacker suitably positioned on the network could intercept the update request and deliver a...

0.00274EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/01/28 12:0 a.m.4 views

CVE-2022-40620

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, does not properly validate TLS certificates when downloading update packages through its auto-update mechanism. An attacker suitably positioned on the network could intercept the update request and deliver a...

6.4AI score0.00274EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.8 views

NETGEAR’s various products have security vulnerabilities

NETGEAR R6260 is a product of the American company NETGEAR. The NETGEAR R6260 is a router. The NETGEAR R6230 is also a router. Netgear R7000 is another product of NETGEAR. The Netgear R7000 is a wireless router. Several NETGEAR products have security vulnerabilities, which stem from the unvalidat...

7.7CVSS5.8AI score0.02233EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/28 12:0 a.m.29 views

CVE-2022-40619

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the LAN interface of affected devices. This interface is vulnerable to unauthenticated arbitrary command injection through the funjsqaccesstoken parameter. This affects R6230 before...

0.02233EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.7 views

NETGEAR’s various products have security vulnerabilities

NETGEAR R6260 is a product of the American company NETGEAR. The NETGEAR R6260 is a router. The NETGEAR R6230 is also a router. Netgear R7000 is another product of NETGEAR. The Netgear R7000 is a wireless router. Several NETGEAR products have security vulnerabilities. These vulnerabilities stem fr...

7.7CVSS6.1AI score0.00274EPSS
Exploits1References2
CVE
CVE
added 2026/01/28 12:0 a.m.31 views

CVE-2022-40619

CVE-2022-40619 affects NETGEAR devices where the FunJSQ module exposes an HTTP server on the LAN and allows unauthenticated arbitrary command injection via the funjsq_access_token parameter. Affected devices/versions include R6230 < 1.1.0.112, R6260 < 1.1.0.88, R7000 < 1.0.11.134, R8900 ...

7.7CVSS6AI score0.02233EPSS
In wildExploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/28 12:0 a.m.2 views

CVE-2022-40619

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the LAN interface of affected devices. This interface is vulnerable to unauthenticated arbitrary command injection through the funjsqaccesstoken parameter. This affects R6230 before...

6AI score0.02233EPSS
Exploits1References2
Rows per page
Query Builder