46 matches found
CVE-2017-18780
Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120...
EUVD-2018-13744
Malware in sbrugna...
CVE-2017-18782
Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JR6150 before 1.0.1.12, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before...
CVE-2020-35840
CVE-2020-35840 is a stored XSS vulnerability in multiple NETGEAR routers (e.g., D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, R60x/R62x/R6260 series, R6050/R6080, WNR1000v4, WNR2020, WNR2050, etc.) across various vendor firmware versions listed in the description. The root cause is unsanitized inp...
CVE-2020-35841
CVE-2020-35841 is a stored XSS vulnerability in NETGEAR devices. Affected are D6200 < 1.1.00.38, D7000 < 1.0.1.78, JNR1010v2 < 1.1.0.62, JR6150 < 1.0.1.24, JWNR2010v5 < 1.1.0.62, R6020 < 1.0.0.42, R6050 < 1.0.1.24, R6080 < 1.0.0.42, R6120 < 1.0.0.66, R6220 < 1.1.0.10...
CVE-2020-35842
CVE-2020-35842 describes a stored XSS vulnerability in NETGEAR devices across multiple models (D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, R6020, R6050, R6080, R6120, R6220, R6260, WNR1000v4, WNR2020, WNR2050) affecting specific firmware versions listed in the initial entry. Connected sources co...
Cross-Site Scripting Vulnerability in Multiple Netgear Products
NETGEAR NETGEAR WNR1000V4 is a wireless router.NETGEAR D6200 is a wireless modem.NETGEAR D7000 is a wireless modem.NETGEAR WNR2020 is a wireless router. NETGEAR JR6150 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR R6020 is a router.NETGEAR R6050 is a router.NETGEAR R6080 is a...
Cross-Site Scripting Vulnerability in Multiple Netgear Products
NETGEAR NETGEAR WNR1000V4 is a wireless router.NETGEAR D6200 is a wireless modem.NETGEAR D7000 is a wireless modem.NETGEAR WNR2020 is a wireless router. NETGEAR JR6150 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR R6020 is a router.NETGEAR R6050 is a router.NETGEAR R6080 is a...
CVE-2018-21226
Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48, WNR1000v4 before 1.1.0.48, WNR2020 before 1.1.0.48, and WNR2050 before 1.1.0.48...
Authentication flaw
Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48, WNR1000v4 before 1.1.0.48, WNR2020 before 1.1.0.48, and WNR2050 before 1.1.0.48...
CVE-2018-21209
Certain NETGEAR devices are affected by reflected XSS. This affects JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.46, PR2000 before 1.0.0.20, R6050 before 1.0.1.10, R6220 before 1.1.0.60, WNDR3700v5 before 1.1.0.50, WNR1000v4 before 1.1.0.46, WNR2020 before 1.1.0.46,...
CVE-2018-21209
Certain NETGEAR devices are affected by reflected XSS. This affects JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.46, PR2000 before 1.0.0.20, R6050 before 1.0.1.10, R6220 before 1.1.0.60, WNDR3700v5 before 1.1.0.50, WNR1000v4 before 1.1.0.46, WNR2020 before 1.1.0.46,...
CVE-2018-21169
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D7000 before 2018-03-01, D7800 before 1.0.1.31, D8500 before 1.0.3.36, JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.14, JWNR2010v5 before 1.1.0.46, PR2000 before 2018-03-01, R6050 before 1.0.1.14,...
CVE-2017-18703
CVE-2017-18703 describes a Cross-Site Request Forgery (CSRF) in a wide range of NETGEAR devices. The web application does not adequately validate request origins, enabling CSRF exploitation that could affect multiple models (examples: D1500, D500, D6100, D7000, D7800, EX6100v2, EX6150v2, JNR1010v...
CVE-2018-21139
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D1500 before 1.0.0.27, D500 before 1.0.0.27, D6100 before 1.0.0.58, D6200 before 1.1.00.30, D6220 before 1.0.0.46, D6400 before 1.0.0.82, D7000 before 1.0.1.68, D7000v2 before 1.0.0.51, D7800 before 1.0.1.42...
CVE-2017-18737
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6220 before 1.1.0.50, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4,...
CVE-2017-18734
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6220 before 1.1.0.50, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4,...
CVE-2017-18749
CVE-2017-18749 is a CSRF vulnerability affecting multiple NETGEAR routers (e.g., JNR1010v2, JR6150, JWNR2010v5, R6050, R6100, R6220, R7500/-v2, R7800, R9000, WNDR3700/4300/4500, WNR1000/2000/2020/2050, etc.) where the web management interface does not sufficiently verify requests originate from t...
CVE-2017-18763
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JNR1010v2 before 1.1.0.42, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.42, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6120 before 1.0.0.30, R6220 before 1.1.0.50, R6700v2 before 1.2.0.4,...
CVE-2017-18764
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D6100 before 1.0.0.55, D7000 before 1.0.1.50, D7800 before 1.0.1.28, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.18, R6050 before 1.0.1.10,...