CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the usbfolder parameter...

6.5CVSS7.7AI score0.00282EPSS

Exploits1References1

RedhatCVE•added 2025/07/17 12:50 a.m.•6 views

CVE-2025-52082

In Netgear XR300 V1.0.3.3810.3.30, a stack-based buffer overflow exists in the HTTPD service through the usbdevice.cgi endpoint. The vulnerability occurs when processing POST requests containing the readaccess parameter...

6.5CVSS7.7AI score0.00282EPSS

Exploits1References1

NVD•added 2025/07/15 4:15 p.m.•3 views

CVE-2025-52080

6.5CVSS0.00282EPSS

Exploits1References1

NVD•added 2025/07/15 4:15 p.m.•2 views

CVE-2025-52081

6.5CVSS0.00282EPSS

Exploits1References1

NVD•added 2025/07/15 4:15 p.m.•4 views

CVE-2025-52082

6.5CVSS0.00282EPSS

Exploits1References1

Vulnrichment•added 2025/07/15 12:0 a.m.•2 views

CVE-2025-52081

7AI score0.00282EPSS

Exploits1References1

Cvelist•added 2025/07/15 12:0 a.m.•4 views

CVE-2025-52081

0.00282EPSS

Exploits1References1

Cvelist•added 2025/07/15 12:0 a.m.•5 views

CVE-2025-52082

0.00282EPSS

Exploits1References1

CVE•added 2025/07/15 12:0 a.m.•14 views

CVE-2025-52081

CVE-2025-52081 affects Netgear XR300 routers (V1.0.3.38_10.3.30). It is a stack-based buffer overflow in the HTTPD service triggered by POST requests to the usb_device.cgi endpoint when the usb_folder parameter is processed. The vulnerability stems from improper handling in this endpoint, enablin...

6.5CVSS7.6AI score0.00282EPSS

Exploits1References1Affected Software1

CVE•added 2025/07/15 12:0 a.m.•15 views

CVE-2025-52082

CVE-2025-52082 affects NETGEAR XR300 (V1.0.3.38_10.3.30). The vulnerability is a stack-based buffer overflow in the HTTPD service triggered by POST requests to the usb_device.cgi endpoint when the read_access parameter is processed. Impact is described as potential low/low escalation with network...

6.5CVSS7.6AI score0.00282EPSS

Exploits1References1Affected Software1

CVE•added 2025/07/15 12:0 a.m.•14 views

CVE-2025-52080

Netgear XR300 (V1.0.3.38_10.3.30) is affected by a stack-based buffer overflow in the HTTPD service via usb_device.cgi when processing POST requests that include the share_name parameter. Documented impact is a network-accessible vulnerability with medium severity (CVSS 3.1: 6.5), but the specifi...

6.5CVSS7.6AI score0.00282EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2025/07/15 12:0 a.m.•2 views

CVE-2025-52080

7AI score0.00282EPSS

Exploits1References1

NVD•added 2024/11/05 3:15 p.m.•9 views

CVE-2024-51004

Netgear R8500 v1.0.2.160 and R7000P v1.3.3.154 were discovered to multiple stack overflow vulnerabilities in the component usbdevice.cgi via the cifsuser, readaccess, and writeaccess parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted POST request...

5.7CVSS0.00216EPSS

Exploits0References2

Vulnrichment•added 2024/11/05 12:0 a.m.•12 views

CVE-2024-51004

7.6AI score0.00216EPSS

Exploits0References2

CVE•added 2024/11/05 12:0 a.m.•50 views

CVE-2024-51004

Netgear R8500 (v1.0.2.160) and R7000P (v1.3.3.154) expose multiple stack overflow vulnerabilities in the usb_device.cgi component, exploitable via cifs_user, read_access, and write_access parameters. A crafted POST to the /usb_device.cgi endpoint can cause a Denial of Service. Connected sources c...

5.7CVSS7.3AI score0.00216EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by