Lucene search
K

45 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:39 a.m.10 views

CVE-2017-18378

In NETGEAR ReadyNAS Surveillance before 1.4.3-17 x86 and before 1.1.4-7 ARM, $GET'uploaddir' is not escaped and is passed to system through $tmpuploaddir, leading to upgradehandle.php?cmd=writeuploaddir remote command execution...

9.8CVSS7.1AI score0.0817EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-9952

Malware in sbrugna...

8CVSS7.9AI score0.00361EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-2045

Malware in sbrugna...

9CVSS8.7AI score0.01564EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2023/11/13 12:0 a.m.4 views

VulnCheck KEV: CVE-2017-18378

In NETGEAR ReadyNAS Surveillance before 1.4.3-17 x86 and before 1.1.4-7 ARM, $GET'uploaddir' is not escaped and is passed to system through $tmpuploaddir, leading to upgradehandle.php?cmd=writeuploaddir remote command execution...

9.8CVSS7.3AI score0.0817EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2022/10/27 12:0 a.m.4 views

VulnCheck KEV: CVE-2016-5680

Stack-based buffer overflow in cgi-bin/cgimain in NUUO NVRmini 2 1.7.6 through 3.0.0 and NETGEAR ReadyNAS Surveillance 1.1.2 allows remote authenticated users to execute arbitrary code via the sn parameter to the transferlicense command...

9CVSS7.9AI score0.16752EPSS
Exploits4References1
VulnCheck KEV
VulnCheck KEV
added 2022/04/01 12:0 a.m.4 views

VulnCheck KEV: CVE-2016-5674

debuggingcenterutils.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the log parameter...

10CVSS7.7AI score0.9461EPSS
Exploits11References1
OSV
OSV
added 2020/04/28 4:15 p.m.2 views

CVE-2017-18861

Certain NETGEAR devices are affected by CSRF. This affects ReadyNAS Surveillance 1.4.3-15-x86 and earlier and ReadyNAS Surveillance 1.1.4-5-ARM and earlier...

8CVSS5.8AI score0.00361EPSS
Exploits0References1
NVD
NVD
added 2020/04/28 4:15 p.m.10 views

CVE-2017-18861

Certain NETGEAR devices are affected by CSRF. This affects ReadyNAS Surveillance 1.4.3-15-x86 and earlier and ReadyNAS Surveillance 1.1.4-5-ARM and earlier...

8CVSS7.9AI score0.00361EPSS
Exploits0References1
OSV
OSV
added 2020/04/28 4:15 p.m.3 views

CVE-2016-11056

Certain NETGEAR devices are affected by anonymous root access. This affects ReadyNAS Surveillance 1.1.1-3-armel and earlier and ReadyNAS Surveillance 1.4.1-3-amd64 and earlier...

8.8CVSS5.8AI score0.01564EPSS
Exploits0References1
NVD
NVD
added 2020/04/28 4:15 p.m.12 views

CVE-2016-11056

Certain NETGEAR devices are affected by anonymous root access. This affects ReadyNAS Surveillance 1.1.1-3-armel and earlier and ReadyNAS Surveillance 1.4.1-3-amd64 and earlier...

9CVSS8.7AI score0.01564EPSS
Exploits0References1
Prion
Prion
added 2020/04/28 4:15 p.m.15 views

Cross site request forgery (csrf)

Certain NETGEAR devices are affected by CSRF. This affects ReadyNAS Surveillance 1.4.3-15-x86 and earlier and ReadyNAS Surveillance 1.1.4-5-ARM and earlier...

7.9CVSS7.8AI score0.00361EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/28 4:0 p.m.21 views

CVE-2016-11056

Certain NETGEAR devices are affected by anonymous root access. This affects ReadyNAS Surveillance 1.1.1-3-armel and earlier and ReadyNAS Surveillance 1.4.1-3-amd64 and earlier...

8.8AI score0.01564EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/04/28 3:53 p.m.17 views

CVE-2017-18861

Certain NETGEAR devices are affected by CSRF. This affects ReadyNAS Surveillance 1.4.3-15-x86 and earlier and ReadyNAS Surveillance 1.1.4-5-ARM and earlier...

7.9AI score0.00361EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2020/01/08 12:0 a.m.4 views

VulnCheck KEV: CVE-2016-5679

cgi-bin/cgimain in NUUO NVRmini 2 1.7.6 through 3.0.0 and NETGEAR ReadyNAS Surveillance 1.1.2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the sn parameter to the transferlicense command...

9CVSS7.6AI score0.14119EPSS
Exploits4References1
CNVD
CNVD
added 2019/06/21 12:0 a.m.5 views

NETGEAR ReadyNAS Surveillance Command Injection Vulnerability

NETGEAR ReadyNAS Surveillance is an add-on application for NETGEAR ReadyNAS from NETGEAR. The program extends surveillance video management capabilities for NETGEAR ReadyNAS devices. A command injection vulnerability exists in NETGEAR ReadyNAS Surveillance versions prior to 1.4.3-17 x86 and prior...

9.8CVSS7.7AI score0.0817EPSS
Exploits1References1
OSV
OSV
added 2019/06/11 9:29 p.m.7 views

CVE-2017-18378

In NETGEAR ReadyNAS Surveillance before 1.4.3-17 x86 and before 1.1.4-7 ARM, $GET'uploaddir' is not escaped and is passed to system through $tmpuploaddir, leading to upgradehandle.php?cmd=writeuploaddir remote command execution...

9.8CVSS5.8AI score0.0817EPSS
Exploits1References2
CVE
CVE
added 2019/06/11 8:44 p.m.101 views

CVE-2017-18378

The CVE-2017-18378 vulnerability affects NETGEAR ReadyNAS Surveillance prior to 1.4.3-17 (x86) and 1.1.4-7 (ARM). The issue is a failure to escape $_GET['uploaddir'], which is passed to system() via $tmp_upload_dir, enabling remote command execution via upgrade_handle.php?cmd=writeuploaddir. Publ...

9.8CVSS9.5AI score0.0817EPSS
In wildExploits1References2Affected Software1
seebug.org
seebug.org
added 2017/10/09 12:0 a.m.43 views

Netgear ReadyNAS Surveillance Unauthenticated Remote Command Execution

Vulnerability summary The following advisory describes an Unauthenticated Remote Command Execution vulnerability found in Netgear ReadyNAS Surveillance. Netgear ReadyNAS Surveillance – Small businesses and corporate branch offices require a secure way to protect physical assets, but often lack th...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2017/10/04 12:0 a.m.49 views

Netgear ReadyNAS Surveillance 1.4.3-16 Remote Command Execution

Exploit Netgear ReadyNAS Surveillance 1.4.3-16 Unauthenticated RCE Date: 27.09.2017 Software Link: https://www.netgear.com/ Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: remote 1. Description $GET'uploaddir' is not escaped a...

0.5AI score
Exploits0
CNVD
CNVD
added 2017/09/29 12:0 a.m.1 views

Netgear ReadyNAS Surveillance Remote Code Execution Vulnerability

NetGear ReadyNAS Surveillance is a comprehensive IP video surveillance solution from NetGear that integrates video surveillance software, storage, switching and network management. A remote code execution vulnerability exists in Netgear ReadyNAS Surveillance. An attacker does not need to be...

8.3AI score
Exploits0References1
Rows per page
Query Builder