NETGEAR ProSAFE Network Management System Directory Traversal Vulnerability

NETGEAR ProSAFE Network Management System is a network management system from NETGEAR that is used to centrally manage, monitor, and configure network devices. A directory traversal vulnerability exists in the NETGEAR ProSAFE Network Management System, which stems from a directory traversal remot...

CVE-2023-44449

NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation Vulnerability. This vulnerability allows remote attackers to escalate privileges on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...

The vulnerability of the saveNodeLabel method in the ProSAFE Network Management System (NMS300) allows a perpetrator to enhance their privileges and perform cross-site scripting attacks.

The vulnerability of the saveNodeLabel method in the ProSAFE Network Management System NMS300 involves a lack of measures taken to protect the website structure. Exploiting this vulnerability can allow attackers to enhance their privileges and perform cross-site scripting attacks...

NETGEAR Access Control Error Vulnerability (CNVD-2023-9749744)

NETGEAR is a router from the American company NETGEAR. A hardware device that connects two or more networks and acts as a gateway between networks. An access control error vulnerability exists in the NETGEAR ProSAFE Network Management System v1.7.0.26 and earlier versions, which can be exploited ...

The vulnerability of the getNodesByTopologyMapSearch() function in the network management, diagnosis, and optimization system for network devices, ProSAFE Network Management System (NMS300), allows a hacker to execute arbitrary code.

The vulnerability of the getNodesByTopologyMapSearch function in the system for managing, diagnosing, and optimizing the operation of network devices, the ProSAFE Network Management System NMS300, is related to the lack of protection for the SQL query structure. Exploiting this vulnerability allo...

NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within th...

CVE-2021-27275

CVE-2021-27275 affects NETGEAR ProSAFE Network Management System 1.6.0.26. The flaw resides in ConfigFileController realName handling, where user-supplied paths are not properly validated before file operations, enabling directory traversal. Consequences include disclosure of sensitive informatio...

CVE-2021-27272

This vulnerability allows remote attackers to delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists...