CVE-2022-44186

Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wandns1pri...

PT-2025-20916 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 4.0.0-B20230531.1404 Description: A buffer overflow issue was discovered via the static dns1 parameter in the "formIpv6Setup" interface. Recommendations: For TOTOLINK A3002R version 4.0.0-B20230531.1404, avoid using th...

PT-2025-9131

Name of the Vulnerable Software and Affected Versions: TOTOlink A3002R version V1.1.1-B20200824.0128 Description: The issue arises from a buffer overflow due to improper input validation of the pppoe dns1 parameter in the formIpv6Setup interface of the /bin/boa endpoint. Recommendations: For...

CVE-2021-40410

An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.13620121102. At 4 the dnsdata-dns1 variable, that has the value of the dns1 parameter provided through the SetLocal API, is not validated properly. This would lead to an OS command...

NETGEAR R8500 安全漏洞

The NETGEAR R8500 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 versions, which stems from a vulnerability in the apmode.cgi component where the apmodedns1pri and apmode dns1sec...

PT-2024-8270 · NetGear · Netgear R6400 +3

Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to multiple stack overflow vulnerabilities in the wlg adv.cgi component of...

PT-2024-8322 · NetGear · Netgear Xr300 +3

Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to multiple stack overflow vulnerabilities in the ap mode.cgi component. Thes...

CVE-2024-36728

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action vlansetting with a sufficiently long dns1 or dns 2 key...

CVE-2022-44184

Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wandns1sec...

CVE-2022-44200

Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow via parameters: stamodedns1pri and stamodedns1sec...

CVE-2022-44186

Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wandns1pri...

CVE-2022-44187

Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via wandns1pri...

CVE-2022-44194

Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameters apmodedns1pri and apmodedns1sec...

NETGEAR R7000P 缓冲区错误漏洞

NETGEAR R7000P is a wireless router from NETGEAR, Inc. A buffer overflow vulnerability exists in NETGEAR R7000P versions V1.3.0.8 and V1.3.1.64, which stems from a lack of length validation of data entered for the stamodedns1pri and stamodedns1sec parameters, which could be exploited by an attack...

PT-2022-5711 · NetGear · Netgear R7000P

Name of the Vulnerable Software and Affected Versions: Netgear R7000P version 1.3.0.8 Description: The issue is related to a buffer overflow error in the httpd daemon of the NETGEAR R7000P router's firmware. This can be exploited by a remote attacker to execute arbitrary code through the wan dns1...

PT-2022-5705 · NetGear · Netgear R7000P

Name of the Vulnerable Software and Affected Versions: Netgear R7000P version 1.3.1.64 Description: The issue is related to a buffer overflow error in the httpd daemon of the NETGEAR R7000P router's software. This error occurs via the wan dns1 pri parameter in the /usr/sbin/httpd endpoint...

PT-2022-5720 · NetGear · Netgear R7000P

Name of the Vulnerable Software and Affected Versions: Netgear R7000P version 1.3.0.8 Description: The issue is related to buffer overflow errors in the NETGEAR R7000P router's software. Exploitation of this issue may allow a remote attacker to execute arbitrary code through the wan dns1 pri...

PT-2022-5718 · NetGear · Netgear R7000P

Name of the Vulnerable Software and Affected Versions: Netgear R7000P versions V1.3.0.8 through V1.3.1.64 Description: The issue is related to a buffer overflow error via parameters stamode dns1 pri and stamode dns1 sec. This can allow a remote attacker to execute arbitrary code through these...

PT-2022-5714 · NetGear · Netgear R7000P

Name of the Vulnerable Software and Affected Versions: Netgear R7000P version 1.3.0.8 Description: The issue is related to buffer overflow errors in the NETGEAR R7000P router's embedded software. Exploitation of this issue may allow a remote attacker to execute arbitrary code through the apmode...

CVE-2022-26999

Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the static ip settings function via the wanipstat, wanmaskstat, wangwstat, and wandns1stat parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request...