Lucene search
K

9 matches found

BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.8 views

The vulnerability in the pppoe2.cgi script of the microprogramming software for Netgear XR300, R7000P, and R6400 v2 allows a hacker to cause a service failure.

The vulnerability in the pppoe2.cgi microprogramming of Netgear XR300, R7000P, and R6400 v2 lies in the copying of buffers without checking the size of input data during the processing of the pppoelocalip parameter. Exploiting this vulnerability allows a malicious actor to cause service failures ...

5.7CVSS5.5AI score0.00299EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.5 views

The vulnerability in the wlg_adv.cgi script of Netgear router microprogramming devices such as R8500, XR300, R7000P, and R6400 v2 allows a hacker to execute arbitrary commands.

The vulnerability in the wlgadv.cgi script of Netgear router microprogramming devices such as R8500, XR300, R7000P, and R6400 v2 relates to the failure to take data cleaning measures at the control level when processing the apmodegateway parameter. Exploiting this vulnerability allows a remote...

8CVSS5.9AI score0.00972EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.4 views

The vulnerability in the ap_mode.cgi script of NETGEAR’s router microprogramming devices R8500, XR300, R7000P, and R6400 v2 allows a hacker to induce a service failure.

The vulnerability of the apmode.cgi script in NETGEAR’s router microprogramming devices such as R8500, XR300, R7000P, and R6400 v2 lies in a buffer overflow that occurs during the processing of the apmodedns1pri and apmodedns1sec parameters. Exploiting this vulnerability allows an attacker to...

5.7CVSS5.9AI score0.00292EPSS
Exploits0References3Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.8 views

The vulnerability in the genie_fix2.cgi microprogramming software for Netgear XR300, R7000P, and R6400 v2 allows a hacker to execute arbitrary commands.

The vulnerability of the geniefix2.cgi microprogramming software for Netgear XR300, R7000P, and R6400 v2 lies in the lack of measures taken to neutralize special elements used in the operating system’s commands when processing the wangateway parameter. Exploiting this vulnerability allows a remot...

8CVSS5.9AI score0.00824EPSS
Exploits0References2Affected Software3
OSV
OSV
added 2024/11/05 3:15 p.m.2 views

CVE-2024-51010

Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a command injection vulnerability in the component apmode.cgi via the apmodegateway parameter. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

8CVSS6AI score0.00935EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/05 12:0 a.m.3 views

PT-2024-8270 · NetGear · Netgear R6400 +3

Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to multiple stack overflow vulnerabilities in the wlg adv.cgi component of...

5.7CVSS7.8AI score0.0039EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/11/05 12:0 a.m.4 views

PT-2024-8273 · NetGear · Netgear R6400 +3

Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to a buffer overflow in the wiz pptp.cgi script of Netgear router firmware,...

5.7CVSS7.9AI score0.00292EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/11/05 12:0 a.m.5 views

PT-2024-8363 · NetGear · Netgear Xr300 +3

Name of the Vulnerable Software and Affected Versions: Netgear R8500 version 1.0.2.160 Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to a stack overflow vulnerability in the genie bpa.cgi script, specifically v...

5.7CVSS7.6AI score0.00389EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/11/05 12:0 a.m.4 views

PT-2024-8259 · NetGear · Netgear R6400V2 +2

Name of the Vulnerable Software and Affected Versions: Netgear XR300 version 1.0.3.78 Netgear R7000P version 1.3.3.154 Netgear R6400 v2 version 1.0.4.128 Description: The issue is related to a stack overflow vulnerability via the pppoe localip parameter at the "wizpppoe.cgi" endpoint. This allows...

5.7CVSS7.4AI score0.00299EPSS
Exploits0References6
Rows per page
Query Builder