77 matches found
CVE-2019-20489
An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. The web management interface setup.cgi has an authentication bypass and other problems that ultimately allow an attacker to remotely compromise the device from a malicious webpage. The attacker sends an FWremote.htm=cfginit request...
CVE-2019-20488
An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple actions within the web management interface setup.cgi are vulnerable to command injection, allowing remote attackers to execute arbitrary commands, as demonstrated by shell metacharacters in the sysDNSHost parameter...
CVE-2017-18780
Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120...
EUVD-2019-11032
Malware in sbrugna...
EUVD-2018-13744
Malware in sbrugna...
EUVD-2019-11033
Malware in sbrugna...
EUVD-2019-11031
Malware in sbrugna...
EUVD-2019-11030
Malware in sbrugna...
CVE-2017-18782
Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JR6150 before 1.0.1.12, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before...
CVE-2020-35840
CVE-2020-35840 is a stored XSS vulnerability in multiple NETGEAR routers (e.g., D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, R60x/R62x/R6260 series, R6050/R6080, WNR1000v4, WNR2020, WNR2050, etc.) across various vendor firmware versions listed in the description. The root cause is unsanitized inp...
CVE-2020-35841
CVE-2020-35841 is a stored XSS vulnerability in NETGEAR devices. Affected are D6200 < 1.1.00.38, D7000 < 1.0.1.78, JNR1010v2 < 1.1.0.62, JR6150 < 1.0.1.24, JWNR2010v5 < 1.1.0.62, R6020 < 1.0.0.42, R6050 < 1.0.1.24, R6080 < 1.0.0.42, R6120 < 1.0.0.66, R6220 < 1.1.0.10...
CVE-2020-35842
CVE-2020-35842 describes a stored XSS vulnerability in NETGEAR devices across multiple models (D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, R6020, R6050, R6080, R6120, R6220, R6260, WNR1000v4, WNR2020, WNR2050) affecting specific firmware versions listed in the initial entry. Connected sources co...
Cross-Site Scripting Vulnerability in Multiple Netgear Products
NETGEAR NETGEAR WNR1000V4 is a wireless router.NETGEAR D6200 is a wireless modem.NETGEAR D7000 is a wireless modem.NETGEAR WNR2020 is a wireless router. NETGEAR JR6150 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR R6020 is a router.NETGEAR R6050 is a router.NETGEAR R6080 is a...
Cross-Site Scripting Vulnerability in Multiple Netgear Products
NETGEAR NETGEAR WNR1000V4 is a wireless router.NETGEAR D6200 is a wireless modem.NETGEAR D7000 is a wireless modem.NETGEAR WNR2020 is a wireless router. NETGEAR JR6150 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR R6020 is a router.NETGEAR R6050 is a router.NETGEAR R6080 is a...
CVE-2018-21226
Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48, WNR1000v4 before 1.1.0.48, WNR2020 before 1.1.0.48, and WNR2050 before 1.1.0.48...
CVE-2016-11057
Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-01-06, WNR614 before 2017-01-06, WNR618 before 2017-01-06, JWNR2000v5 before 2017-01-06, WNR2020 before 2017-01-06, JWNR2010v5 before 2017-01-06, WNR1000v4 before 2017-01-06, WNR2020v2...
Code injection
Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-01-06, WNR614 before 2017-01-06, WNR618 before 2017-01-06, JWNR2000v5 before 2017-01-06, WNR2020 before 2017-01-06, JWNR2010v5 before 2017-01-06, WNR1000v4 before 2017-01-06, WNR2020v2...
Authentication flaw
Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48, WNR1000v4 before 1.1.0.48, WNR2020 before 1.1.0.48, and WNR2050 before 1.1.0.48...
CVE-2018-21209
Certain NETGEAR devices are affected by reflected XSS. This affects JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.46, PR2000 before 1.0.0.20, R6050 before 1.0.1.10, R6220 before 1.1.0.60, WNDR3700v5 before 1.1.0.50, WNR1000v4 before 1.1.0.46, WNR2020 before 1.1.0.46,...
CVE-2018-21209
Certain NETGEAR devices are affected by reflected XSS. This affects JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.46, PR2000 before 1.0.0.20, R6050 before 1.0.1.10, R6220 before 1.1.0.60, WNDR3700v5 before 1.1.0.50, WNR1000v4 before 1.1.0.46, WNR2020 before 1.1.0.46,...