42 matches found
CVE-2018-21230
CVE-2018-21230 affects a broad range of NETGEAR routers (e.g., D1500, D500, D6100, D6220, D6400, D7000, D7800, D8500, DGN2200 variants, EX-series, R-series, WN-series, etc.) due to incorrect configuration of security settings. Connected sources list the affected models and firmware ranges (variou...
CVE-2018-21231
CVE-2018-21231 concerns multiple NETGEAR devices affected by an incorrect configuration of security settings. Affected models and firmware ranges include D1500 (<1.0.0.27), D500 (<1.0.0.27), D6100 (<1.0.0.57), D6220 (<1.0.0.40), D6400 (<1.0.0.74), D7000 (<1.0.1.60), D7800 (<1...
CVE-2017-18703
CVE-2017-18703 describes a Cross-Site Request Forgery (CSRF) in a wide range of NETGEAR devices. The web application does not adequately validate request origins, enabling CSRF exploitation that could affect multiple models (examples: D1500, D500, D6100, D7000, D7800, EX6100v2, EX6150v2, JNR1010v...
CVE-2020-35799
CVE-2020-35799 affects a wide range of NETGEAR devices (D3600, D6000, D6200, D7000, D7800, DM200, EX2700, EX6100v2, EX6150v2, EX6200v2, EX6400, EX7300, EX8000, JR6150, PR2000, R6020, R6050, R6080, R6120, R6220, R6230, R6260, R6700v2, R6800, R6900v2, R7500v2, R7800, R8900, R9000, RBK/RBR/RBS famil...
CVE-2021-38514
CVE-2021-38514 corresponds to an authentication bypass affecting numerous NETGEAR devices (examples: D3600, D6000, D6100, D6200, D6220, D6400, D7000, D7000v2, D7800, D8500, various WN/R series, XR500, etc.) with many revision thresholds (most listed “before” specific version numbers). Root cause ...
CVE-2021-38525
CVE-2021-38525 affects a large set of NETGEAR routers (e.g., D3600, D6000, D6200, D7000, EX6xxx, XR500, R6xxx, R7xxx, etc.) with a stack-based buffer overflow vulnerability exploitable by an authenticated user. The issue occurs in multiple models and firmware revisions listed in the vulnerability...
CVE-2021-38534
CVE-2021-38534 affects a wide range of NETGEAR routers and gateways. Based on the provided records, the vulnerability is described as stored cross-site scripting (XSS) impacting multiple device lines and numerous firmware versions (for example, D3600 before 1.0.0.76, D6000 before 1.0.0.76, D6100 ...
CVE-2020-35787
CVE-2020-35787 is a buffer overflow in a range of NETGEAR devices that can be triggered by an authenticated user. Affected products and firmware ranges include: D3600 < 1.0.0.76, D6000 < 1.0.0.76, D6200 < 1.1.00.36, D7000 < 1.0.1.70, EX6200v2 < 1.0.1.78, EX7000 < 1.0.1.78, EX800...
CVE-2021-45641
CVE-2021-45641 affects multiple NETGEAR routers (e.g., D3600, D6000, D6200, D6220, D6400, D7000/…/XR500, among others) due to incorrect configuration of security settings. The vulnerability involves a misconfiguration issue in a broad list of NETGEAR devices before specified firmware versions (e....
CVE-2019-20685
This CVE (CVE-2019-20685) affects a range of NETGEAR devices, caused by a stack-based buffer overflow in unauthenticated scenarios. Affected models and versions include D3600/D6000/D6200/D7000/DM200/JR6150/PR2000/R6020/R6050/R6080/R6120/R6220/R6260/R6700v2/R6800/R6900v2/WNR2020/XR500 with specifi...
CVE-2021-45640
The CVE-2021-45640 entry impacts NETGEAR routers and extenders (e.g., D3600/D6000/D6200/D6220/D6400/D7000/D7800 etc.) with firmware versions listed in the description. The root cause is an incorrect configuration of security settings on affected devices. Connected documents reiterate the same dev...
CVE-2017-18785
CVE-2017-18785 affects a broad set of NETGEAR devices (e.g., D3600, D6000, D6100, D6200, D7000, D7800, D8500, DGN2200 variants, EX-series, R-series, WN-series, etc.) with various firmware versions (examples: D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, R6400 before 1.0.1.3...
CVE-2017-18791
CVE-2017-18791 is a CSRF vulnerability in NETGEAR devices (R6050/JR6150, PR2000, R6220, WNDR3700v5, JNR1010v2, JWNR2010v5, WNR1000v4, WNR2020, WNR2050, WNR614, WNR618, D7000) affecting firmware versions prior to the listed fixes (e.g., 1.0.1.7, 1.0.0.17, 1.1.0.50, 1.1.0.48, 1.1.0.40, 1.0.1.50). T...
CVE-2018-21139
CVE-2018-21139 affects multiple NETGEAR consumer/SMB routers (e.g., D1500, D500, D6100, D6200, D6400, D7000 series, DGN2200, WNDR/ R-series, etc.) with firmware versions before the listed thresholds (e.g., D1500 before 1.0.0.27, D6100 before 1.0.0.58, etc.). Root cause is sensitive information di...
CVE-2019-20681
CVE-2019-20681 is an authentication-bypass vulnerability affecting multiple NETGEAR devices. Affected models and fixed/fix-in-progress versions identified in the documents include D6200 before 1.1.00.34, D7000 before 1.0.1.68, JR6150 before 1.0.1.18, PR2000 before 1.0.0.28, R6050 before 1.0.1.18,...
CVE-2019-20683
CVE-2019-20683 is a stack-based buffer overflow in various NETGEAR routers/gateways that can be exploited by an unauthenticated attacker. Affected products include D3600 (pre-1.0.0.76), D6000 (pre-1.0.0.76), D6200 (pre-1.1.00.32), D7000 (pre-1.0.1.68), JR6150 (pre-1.0.1.18), PR2000 (pre-1.0.0.28)...
CVE-2019-20684
Concrete details available: CVE-2019-20684 is a stack-based buffer overflow in multiple NETGEAR routers (e.g., D3600, D6000, D6200, D7000, R6700v2, XR500, etc.) that is exploitable by an unauthenticated attacker over adjacent network. The underlying cause is improper data boundary checks leading ...
CVE-2017-18784
CVE-2017-18784 is an XSS vulnerability affecting NETGEAR devices. Affected models and versions include D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26,...
CVE-2017-18764
CVE-2017-18764 affects a wide range of NETGEAR devices (e.g., D6100, D7000, D7800, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6100, R6120, R6220, R6700v2, R6800, R6900v2, R7500, R7500v2, R7800, R9000, WN3000RPv3, WNDR3700 variants, WNDR4300 variants, WNR1000/2000/2020/2050, etc.) where the co...
CVE-2020-26908
CVE-2020-26908 corresponds to an authentication bypass affecting a range of NETGEAR devices. Affected models and minimum vulnerable/affected firmware versions include D6200 (< 1.1.00.36), D7000 (< 1.0.1.74), PR2000 (< 1.0.0.30), R6020 (< 1.0.0.42), R6050 (< 1.0.1.22), JR6150 (< ...
CVE-2017-18737
CVE-2017-18737 affects several NETGEAR routers (JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6220, R6700v2, R6800, R6900v2, WNDR3700v5, WNR1000v4, WNR2020, WNR2050) with specific firmware before the listed versions. It is a command-injection vulnerability reachable by an unauthenticated attacke...
CVE-2017-18778
Summary (CVE-2017-18778) : Several NETGEAR devices are affected by an incorrect configuration of security settings. Affected models include D6220, D6400, D7000, D7000v2, D7800, D8500, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6220, R6400, R6400v2, R6700v2, R6800, R6900v2, R7100LG, R7300DST, ...
CVE-2018-21169
CVE-2018-21169 affects NETGEAR devices due to incorrect configuration of security settings. The vulnerability applies to multiple models (e.g., D7000, D7800, D8500, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6220, R6400, R6700v2, R6800, R6900v2, R7300DST, R7500, R7500v2, R7800, R7900P, R8000P...
CVE-2017-18788
CVE-2017-18788 affects a wide range of NETGEAR devices (e.g., D3600, D6000, D6100, D6200, D6220, D6400, D7000 family, DGN2200v4, EX-series, R-series, etc.) with command injection vulnerability triggered by an authenticated user. Affected firmware versions are listed in the entry (e.g., D3600 befo...
CVE-2018-21168
CVE-2018-21168 affects a broad set of NETGEAR devices (D7000, D7800, D8500, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6220, R6400, R6400v2, R6700v2, R6800, R6900v2, R7300DST, R7500, R7500v2, R7800, R7900P, R8000P, R8300, R8500, R9000, WNDR3700v4/v5, WNDR4300/v2, WNDR4500v3, WNR1000v4, WNR202...
CVE-2017-18780
CVE-2017-18780 affects a range of NETGEAR devices (e.g., D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6020/R6050/R6080/R6120/R6220, R6700v2, R6800, R6900v2, WNDR3700v5, WNR1000v4, WNR2020, WNR2050) with denial of service achievable through the listed firmware versions. The Red Hat and ot...
CVE-2017-18783
CVE-2017-18783 is an XSS vulnerability reported for NETGEAR devices, affecting D6200 (before 1.1.00.24), D7000 (before 1.0.1.52), JNR1010v2 (before 1.1.0.44), JR6150 (before 1.0.1.12), JWNR2010v5 (before 1.1.0.44), PR2000 (before 1.0.0.20), R6020 (before 1.0.0.26), R6050 (before 1.0.1.12), R6080 ...
CVE-2017-18763
CVE-2017-18763 concerns NETGEAR routers. Affected models and their vulnerable firmware versions are: JNR1010v2 < 1.1.0.42, JR6150 < 1.0.1.10, JWNR2010v5 < 1.1.0.42, PR2000 < 1.0.0.18, R6050 < 1.0.1.10, R6120 < 1.0.0.30, R6220 < 1.1.0.50, R6700v2 < 1.2.0.4, R6800 < 1.2.0...
CVE-2017-18781
CSRF vulnerability CVE-2017-18781 affects a range of NETGEAR devices (e.g., D6200 < 1.1.00.24; D7000 < 1.0.1.52; R6220 < 1.1.0.60; R6700v2/6800/6900v2
CVE-2017-18734
CVE-2017-18734 affects multiple NETGEAR routers, where an unauthenticated attacker can perform a command injection. Affected models and versions include JNR1010v2 prior to 1.1.0.44, JR6150 prior to 1.0.1.10, JWNR2010v5 prior to 1.1.0.44, PR2000 prior to 1.0.0.18, R6050 prior to 1.0.1.10, R6220 pr...
CVE-2019-20640
CVE-2019-20640 affects multiple NETGEAR devices (D3600, D6000, D6200, D7000, JR6150, PR2000, R6020, R6050, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, WNR2020, XR500) with a stack-based buffer overflow triggered by an unauthenticated attacker. The root cause is a memory boundary check fa...
CVE-2019-20657
The CVE-2019-20657 entry describes a buffer overflow in multiple NETGEAR devices, exploitable by an authenticated user. Affected models/include D6200 (before 1.1.00.36), D7000 (before 1.0.1.74), PR2000 (before 1.0.0.28), R6020 (before 1.0.0.42), R6080 (before 1.0.0.42), R6050 (before 1.0.1.24), J...
CVE-2019-20686
The CVE affects multiple NETGEAR router models (D6200, D7000, JR6150, PR2000, R6020, R6080, R6050, R6120, R6220, R6260, R6700v2, R6800, R6900v2, WNR2020) with a pre-100% specific root cause of a buffer overflow exploitable by an unauthenticated attacker. Affected firmware versions are listed in t...
CVE-2020-11788
Technical details sufficient to assess impact and remediation are not publicly present in the provided documents. Monitor for updates from vendors and security advisories.
CVE-2019-20682
The vulnerability CVE-2019-20682 affects NETGEAR devices and is caused by a stack-based buffer overflow exploitable by an unauthenticated attacker. Affected models include D3600 (pre-1.0.0.76), D6000 (pre-1.0.0.76), D6200 (pre-1.1.00.32), D7000 (pre-1.0.1.68), JR6150 (pre-1.0.1.18), PR2000 (pre-1...
CVE-2017-18782
CVE-2017-18782 applies to multiple NETGEAR devices via a cross-site request forgery (CSRF) flaw. Affected models and firmware ranges include D6200 ≤1.1.00.24, D7000 ≤1.0.1.52, JR6150 ≤1.0.1.12, JNR1010v2 ≤1.1.0.44, JWNR2010v5 ≤1.1.0.44, PR2000 ≤1.0.0.20, R6020 ≤1.0.0.26, R6050 ≤1.0.1.12, R6080 ≤1...
CVE-2018-21209
The CVE-2018-21209 entry affects multiple NETGEAR routers, with a reflected XSS vulnerability in the web interface. Affected models and minimum vulnerable ranges include JNR1010v2 (before 1.1.0.46), JR6150 (before 1.0.1.10), JWNR2010v5 (before 1.1.0.46), PR2000 (before 1.0.0.20), R6050 (before 1....
CVE-2019-20656
The CVE-2019-20656 issue is a Hardcoded password vulnerability affecting multiple NETGEAR devices (D6200 < 1.1.00.36; D7000 < 1.0.1.74; PR2000 < 1.0.0.30; R6020 < 1.0.0.42; R6080 < 1.0.0.42; R6050 < 1.0.1.24; JR6150 < 1.0.1.24; R6120 < 1.0.0.48; R6220 < 1.1.0.86; R6230 ...
CVE-2017-18786
CVE-2017-18786 affects several NETGEAR devices via a local command-injection vulnerability. Affected models and firmware: D6200 < 1.1.00.24, JNR1010v2 < 1.1.0.44, JR6150 < 1.0.1.12, JWNR2010v5 < 1.1.0.44, PR2000 < 1.0.0.20, R6050 < 1.0.1.12, WNR1000v4 < 1.1.0.44, WNR2020 <...
CVE-2017-18787
CVE-2017-18787 concerns a command-injection vulnerability affecting multiple NETGEAR devices. According to the connected Red Hat and CNVD/NVD records, affected devices include D6200 (pre 1.1.00.24), JNR1010v2 (pre 1.1.0.44), JR6150 (pre 1.0.1.12), JWNR2010v5 (pre 1.1.0.44), PR2000 (pre 1.0.0.20),...
CVE-2017-18779
CVE-2017-18779 affects multiple NETGEAR devices due to a buffer overflow in networking code. Affected models and their affected firmware versions include D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0...
CVE-2017-18735
CVE-2017-18735 affects multiple NETGEAR routers with unauthenticated command injection. Affected devices and vulnerable versions include: JR6150 before 1.0.1.10, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, and R6700v2/R6800/R6900v2 before 1.2.0.4. Root cause is a pre-authentication command inj...