CVE-2023-30526

A missing permission check in Jenkins Report Portal Plugin 0.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified bearer token authentication...

The vulnerabilities of the `update_auth()` and `check_auth()` functions in Netgear Wi-Fi router software models such as JWNR2000v2, Netgear XWN5001, and Netgear XAVN2001v2 allow a hacker to execute arbitrary code.

The vulnerabilities of the updateauth and checkauth functions in Netgear Wi-Fi routers such as JWNR2000v2, Netgear XWN5001, and Netgear XAVN2001v2 involve the execution of operations outside of the buffer in memory. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary co...

CVE-2023-39550

Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the httppasswd and httpusername parameters in the checkauth function...

CVE-2023-39550

Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the httppasswd and httpusername parameters in the checkauth function...