NETGEAR R8500 ipv6_fix.cgi component ipv6_wan_ipaddr parameter buffer overflow vulnerability

The NETGEAR R8500 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the NETGEAR R8500 v1.0.2.160, which originates from the ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, and ipv6lanlength parameters parameters in the ipv6fix.cgi component. Failure to properly validate th...

NETGEAR R8500 ipv6_fix.cgi component ipv6_pri_dns parameter buffer overflow vulnerability

The NETGEAR R8500 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in the NETGEAR R8500 v1.0.2.160, which stems from the ipv6pridns parameter in the ipv6fix.cgi component that fails to correctly validate the length of the incoming data, and can be exploited by a remote...

CVE-2024-51012

Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow via the ipv6pridns parameter at ipv6fix.cgi. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

CVE-2024-50994

Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component ipv6fix.cgi via the ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, and ipv6lanlength parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST...

CVE-2024-50994

Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component ipv6fix.cgi via the ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, and ipv6lanlength parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST...

CVE-2024-51012

CVE-2024-51012 affects Netgear R8500 v1.0.2.160. The vulnerability is a stack overflow in the ipv6_fix.cgi component triggered by the ipv6_pri_dns parameter, allowing an attacker to cause a Denial of Service via a crafted POST request. Public details consistently name the affected firmware/versio...

CVE-2024-50994

Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component ipv6fix.cgi via the ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, and ipv6lanlength parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST...

CVE-2024-50994

Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component ipv6fix.cgi via the ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, and ipv6lanlength parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST...

CVE-2024-51012

Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow via the ipv6pridns parameter at ipv6fix.cgi. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

CVE-2024-50994

CVE-2024-50994 affects Netgear R8500 with v1.0.2.160, where multiple stack overflow vulnerabilities exist in the ipv6_fix.cgi component triggered by ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, and ipv6_lan_length. The crash/overflow can be induced by a crafted POST request and is described...

CVE-2022-30078

NETGEAR R6200V2 firmware versions through R6200v2-V1.0.3.1210.1.11 and R6300V2 firmware versions through R6300v2-V1.0.4.5210.0.93 allow remote authenticated attackers to execute arbitrary command via shell metacharacters in the ipv6fix.cgi ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, or...

NETGEAR R6300v2和NETGEAR R6200v2 操作系统命令注入漏洞

The NETGEAR R6300v2 and NETGEAR R6200v2 are both wireless routers from NETGEAR. An operating system command injection vulnerability exists in the NETGEAR R6200v2 and R6300v2 routers, which can be exploited to execute arbitrary commands via shell metacharacters or the ipv6lanlength parameter in...

CVE-2022-27947

NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands such as telnetd via shell metacharacters in the ipv6fix.cgi ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, or ipv6lanlength parameter...