Ex6400v2 Firmware Security Vulnerabilities and Issues — Ex6400v2 Firmware CVE List

Lucene search

NetgearEx6400v2 Firmware

7 matches found

CVE•added 2021/03/05 8:15 p.m.•72 views

CVE-2021-27254

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7800. Authentication is not required to exploit this vulnerability. The specific flaw exists within the apply_save.cgi endpoint. This issue results from the use of hard-coded encrypti...

8.8CVSS9AI score0.00062EPSS

CVE•added 2021/03/05 8:15 p.m.•68 views

CVE-2021-27255

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Authentication is not required to exploit this vulnerability. The specific flaw exists within the refresh_status.aspx endpoint. The issue results from a lack of...

8.8CVSS9AI score0.01232EPSS

CVE•added 2021/03/05 8:15 p.m.•67 views

CVE-2021-27256

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists wit...

8.8CVSS8.8AI score0.0041EPSS

CVE•added 2021/12/26 1:15 a.m.•48 views

CVE-2021-45548

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.60, DM200 before 1.0.0.66, EX2700 before 1.0.1.56, EX6150v2 before 1.0.1.86, EX6200v2 before 1.0.1.86, EX6250 before 1.0.0.128, EX6400 before 1.0.2.144, EX6400v2 before 1.0.0.128, EX6...

8.8CVSS8.8AI score0.00345EPSS

CVE•added 2021/04/14 4:15 p.m.•44 views

CVE-2021-27251

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. Authentication is not required to exploit this vulnerability The specific flaw exists within handling of firmware updates. The issue results from a fallback to a inse...

8.8CVSS8.8AI score0.00217EPSS

CVE•added 2021/04/14 4:15 p.m.•40 views

CVE-2021-27253

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling...

8.8CVSS8.8AI score0.00545EPSS

CVE•added 2021/04/14 4:15 p.m.•36 views

CVE-2021-27252

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the vendor_specific DHCP opcode. The iss...

8.8CVSS8.8AI score0.0041EPSS