CVE-2017-18780

Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120...

EUVD-2019-11226

Malware in sbrugna...

EUVD-2018-13744

Malware in sbrugna...

CVE-2017-18782

Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JR6150 before 1.0.1.12, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before...

CVE-2021-45657

Certain NETGEAR devices are affected by server-side injection. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, R6020 before 1.0.0.48, R6080 before 1.0.0.48, R6050 before 1.0.1.26, JR6150 before 1.0.1.26, R6120 before 1.0.0.66, R6220 before 1.1.0.100, R6230 before 1.1.0.100, R6260 befo...

Design/Logic Flaw

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6200 before 1.1.00.34, D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000 before 1.0.1.74, D7000v2 before 1.0.0.53, D7800 before 1.0.1.56, D8500 befor...

CVE-2021-45551

CVE-2021-45551 affects multiple NETGEAR devices (e.g., D6200, D7000, R6020, R6080, R6050, JR6150, R6120, R6230, R6260, R6800, R6700v2, R6900v2, R7450, AC2100/AC2400/AC2600, WNR2020) with a command injection vulnerability exploitable by an authenticated user. The Initial and connected sources cons...

CVE-2021-45657

The CVE-2021-45657 is a server-side injection vulnerability affecting a range of NETGEAR devices (D6200, D7000, R6020, R6080, R6050, JR6150, R6120, R6220, R6230, R6260, R6800, R6900v2, R6700v2, R7450, AC2100/AC2400/AC2600, RBK/RBR/RBS series, and WNR2020). Root cause: injection on the server side...

CVE-2021-38534

CVE-2021-38534 affects a wide range of NETGEAR routers and gateways. Based on the provided records, the vulnerability is described as stored cross-site scripting (XSS) impacting multiple device lines and numerous firmware versions (for example, D3600 before 1.0.0.76, D6000 before 1.0.0.76, D6100 ...

Weak password vulnerability in NETGEAR WNR2020 router

The NETGEAR WNR2020 router is a wireless router device. A weak password vulnerability exists in the NETGEAR WNR2020 Router, which can be exploited by an attacker to compromise the device, obtain sensitive information and perform unauthorized operations...

Multiple Netgear Products Licensing Issues Vulnerabilities

Netgear NETGEAR WNR2020 and others are products of Netgear, Inc.NETGEAR WNR2020 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR R6700v2 is a wireless router. An authorization issue vulnerability exists in multiple NETGEAR routers that stems from a lack of authentication measures o...

CVE-2020-35840

CVE-2020-35840 is a stored XSS vulnerability in multiple NETGEAR routers (e.g., D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, R60x/R62x/R6260 series, R6050/R6080, WNR1000v4, WNR2020, WNR2050, etc.) across various vendor firmware versions listed in the description. The root cause is unsanitized inp...

CVE-2020-35841

CVE-2020-35841 is a stored XSS vulnerability in NETGEAR devices. Affected are D6200 < 1.1.00.38, D7000 < 1.0.1.78, JNR1010v2 < 1.1.0.62, JR6150 < 1.0.1.24, JWNR2010v5 < 1.1.0.62, R6020 < 1.0.0.42, R6050 < 1.0.1.24, R6080 < 1.0.0.42, R6120 < 1.0.0.66, R6220 < 1.1.0.10...

CVE-2020-35842

CVE-2020-35842 describes a stored XSS vulnerability in NETGEAR devices across multiple models (D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, R6020, R6050, R6080, R6120, R6220, R6260, WNR1000v4, WNR2020, WNR2050) affecting specific firmware versions listed in the initial entry. Connected sources co...

Certain NETGEAR devices buffer error vulnerability

Netgear NETGEAR is a router from the American company Netgear. It is a hardware device that connects two or more networks and acts as a gateway between networks. A buffer error vulnerability exists in Certain NETGEAR devices and the following products and versions are affected: D3600 before...

Cross-Site Scripting Vulnerability in Multiple Netgear Products

NETGEAR NETGEAR WNR1000V4 is a wireless router.NETGEAR D6200 is a wireless modem.NETGEAR D7000 is a wireless modem.NETGEAR WNR2020 is a wireless router. NETGEAR JR6150 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR R6020 is a router.NETGEAR R6050 is a router.NETGEAR R6080 is a...

Cross-Site Scripting Vulnerability in Multiple Netgear Products

NETGEAR NETGEAR WNR1000V4 is a wireless router.NETGEAR D6200 is a wireless modem.NETGEAR D7000 is a wireless modem.NETGEAR WNR2020 is a wireless router. NETGEAR JR6150 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR R6020 is a router.NETGEAR R6050 is a router.NETGEAR R6080 is a...

NETGEAR Multiple Routers mini_httpd Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Authentication is not required to exploit this...

Design/Logic Flaw

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R6120, R6080, R6260, R6220, R6020, JNR3210, and WNR2020 routers with firmware 1.0.66. Authentication is not required to exploit this vulnerability. The specific flaw exists...

CVE-2020-26914

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JR6150 before 1.0.1.24, R6020 before 1.0.0.42, R6050 before 1.0.1.24, R6080 before 1.0.0.42, R6120 before 1.0.0.66, R6220 before 1.1.0.100, R6260 before...