Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-49229

Malicious code in bioql PyPI...

8.1CVSS8AI score0.0084EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/23 4:11 a.m.6 views

CVE-2023-39550

Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the httppasswd and httpusername parameters in the checkauth function...

8.8CVSS7.6AI score0.00898EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/23 1:7 a.m.12 views

CVE-2022-46424

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...

8.1CVSS8AI score0.0084EPSS
Exploits0References1
OSV
OSVadded 2023/08/07 7:15 p.m.3 views

CVE-2023-39550

Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the httppasswd and httpusername parameters in the checkauth function...

8.8CVSS6AI score0.00898EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2023/08/07 7:15 p.m.6 views

CVE-2023-38922

Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the httppasswd and httpusername parameters in the updateauth function...

8.8CVSS7.5AI score0.00629EPSS
Exploits0References3
Prion
Prionadded 2023/08/07 7:15 p.m.13 views

Buffer overflow

Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the httppasswd and httpusername parameters in the updateauth function...

6.5CVSS8.8AI score0.00629EPSS
Exploits0References2Affected Software3
Prion
Prionadded 2023/08/07 7:15 p.m.20 views

Buffer overflow

Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the httppasswd and httpusername parameters in the checkauth function...

6.5CVSS8.8AI score0.00898EPSS
Exploits1References2Affected Software3
CNNVD
CNNVDadded 2023/08/07 12:0 a.m.4 views

NETGEAR JWNR2000 and XWN5001 and XAVN2001 Security Vulnerabilities

NETGEAR XWN5001 and NETGEAR JWNR2000 are both products of NETGEAR Corporation.NETGEAR XWN5001 is a wireless access point.NETGEAR JWNR2000 is a wireless router. A security vulnerability exists in NETGEAR JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7, which stems from a multiple...

8.8CVSS7.3AI score0.00629EPSS
Exploits0References3
CNNVD
CNNVDadded 2023/08/07 12:0 a.m.4 views

NETGEAR JWNR2000 Security Vulnerabilities

The NETGEAR JWNR2000 is a wireless router from NETGEAR. A security vulnerability exists in the NETGEAR JWNR2000 that stems from a buffer overflow vulnerability in the parameters httppasswd and httpusername. Affected products and versions: Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, XAVN2001v2...

8.8CVSS7.3AI score0.00898EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2023/08/07 12:0 a.m.6 views

PT-2023-27016 · NetGear · Netgear Wnr2000V2

Name of the Vulnerable Software and Affected Versions: Netgear JWNR2000v2 version 1.0.0.11 XWN5001 version 0.4.1.1 XAVN2001v2 version 0.4.0.7 Description: The issue is related to multiple buffer overflows that can occur via the http passwd and http username parameters in the check auth function...

8.8CVSS8.7AI score0.00898EPSS
Exploits1References4
OSV
OSVadded 2022/12/20 8:15 p.m.2 views

CVE-2022-46424

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...

8.1CVSS6.1AI score0.0084EPSS
Exploits0References2
NVD
NVDadded 2022/12/20 8:15 p.m.23 views

CVE-2022-46424

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...

8.1CVSS0.0084EPSS
Exploits0References2
Prion
Prionadded 2022/12/20 8:15 p.m.29 views

Design/Logic Flaw

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...

5.1CVSS8.4AI score0.0084EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/12/20 12:0 a.m.57 views

CVE-2022-46424

Affected product: Netgear XWN5001 Powerline 500 WiFi Access Point. Vulnerability: exploitable firmware modification allowing a MITM attacker to modify a user-uploaded firmware image and bypass CRC checks, enabling arbitrary code execution or Denial of Service. Root cause/condition: vulnerable fir...

8.1CVSS8.3AI score0.0084EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2022/12/20 12:0 a.m.7 views

PT-2022-27868 · NetGear · Netgear Xwn5001 Powerline 500 Wifi Access Point

Name of the Vulnerable Software and Affected Versions: Netgear XWN5001 Powerline 500 WiFi Access Point versions v0.4.1.1 and earlier Description: An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a...

8.1CVSS8.2AI score0.0084EPSS
Exploits0References6
CNNVD
CNNVDadded 2022/12/20 12:0 a.m.2 views

NETGEAR XWN5001 命令注入漏洞

The NETGEAR XWN5001 is a wireless access point from NETGEAR. A command injection vulnerability exists in NETGEAR XWN5001 Powerline 500 WiFi v0.4.1.1 and earlier versions, which can be exploited by an attacker to conduct a MITM Man-in-the-Middle attack to modify a user-uploaded firmware image,...

8.1CVSS8.2AI score0.0084EPSS
Exploits0References4
Cvelist
Cvelistadded 2022/12/20 12:0 a.m.29 views

CVE-2022-46424

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...

8.6AI score0.0084EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/12/20 12:0 a.m.9 views

CVE-2022-46424

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...

8.4AI score0.0084EPSS
Exploits0References2
Rows per page
Query Builder