124 matches found
CVE-2017-5521
CVE-2017-5521 affects multiple NETGEAR router models (R8500, R8300, R7000, R6400, R7300, R7100LG, R6300v2, WNDR3400v3, WNR3500Lv2, R6250, R6700, R6900, R8000) and enables an authentication bypass that can disclose the admin password through crafted requests to the web management server. The root ...
CVE-2018-21230
CVE-2018-21230 affects a broad range of NETGEAR routers (e.g., D1500, D500, D6100, D6220, D6400, D7000, D7800, D8500, DGN2200 variants, EX-series, R-series, WN-series, etc.) due to incorrect configuration of security settings. Connected sources list the affected models and firmware ranges (variou...
CVE-2018-21227
CVE-2018-21227 affects multiple NETGEAR routers: D7800 <1.0.1.34, R6400v2 <1.0.2.34, R6700 <1.0.1.30, R6900 <1.0.1.30, R6900P <1.0.0.62, R7000 <1.0.9.12, R7000P <1.0.0.62, R7500v2 <1.0.3.26, R7800 <1.0.2.42, R9000 <1.0.3.10, WNDR4300v2 <1.0.0.50, and WNDR4500v3
CVE-2018-21231
CVE-2018-21231 concerns multiple NETGEAR devices affected by an incorrect configuration of security settings. Affected models and firmware ranges include D1500 (<1.0.0.27), D500 (<1.0.0.27), D6100 (<1.0.0.57), D6220 (<1.0.0.40), D6400 (<1.0.0.74), D7000 (<1.0.1.60), D7800 (<1...
CVE-2017-18703
CVE-2017-18703 describes a Cross-Site Request Forgery (CSRF) in a wide range of NETGEAR devices. The web application does not adequately validate request origins, enabling CSRF exploitation that could affect multiple models (examples: D1500, D500, D6100, D7000, D7800, EX6100v2, EX6150v2, JNR1010v...
CVE-2018-21228
CVE-2018-21228 affects several NETGEAR devices due to a command injection vulnerability exploitable by an authenticated user. Affected models and firmware ranges include: D7800 < 1.0.1.34; EX6100v2 < 1.0.1.50; EX6150v2 < 1.0.1.50; EX6200v2 < 1.0.1.44; EX6400 < 1.0.1.60; EX7300 <...
CVE-2019-20753
CVE-2019-20753 affects a wide range of NETGEAR routers by a stack-based buffer overflow under unauthenticated access. Affected devices include DGN2200v1 (pre-1.0.0.58), D8500 (pre-1.0.3.42), D7000v2 (pre-1.0.0.51), D6400 (pre-1.0.0.78), D6220 (pre-1.0.0.44), JNDR3000 (pre-1.0.0.24), R8000 (pre-1....
CVE-2017-18705
CVE-2017-18705 affects multiple NETGEAR devices (D7800, R6100, R7500, R7500v2, R7800, R9000, WNDR3700v4, WNDR4300, WNDR4300v2, WNDR4500v3, WNR2000v5) where a misconfiguration of security settings is present. The advisory lists affected firmware versions (e.g., D7800 < 1.0.1.28; R6100 < 1.0....
CVE-2019-20746
The CVE-2019-20746 entry describes a reflected cross-site scripting (XSS) vulnerability affecting multiple NETGEAR devices. Affected products and versions include D3600 ≤1.0.0.75, D6000 ≤1.0.0.75, D7800 ≤1.0.1.44, DM200 ≤1.0.0.58, R7800 ≤1.0.2.58, R8900 ≤1.0.4.12, R9000 ≤1.0.4.8, RBK/RBR/RBS seri...
CVE-2019-20751
CVE-2019-20751 describes a stack-based overflow in certain NETGEAR devices (D6100, DM200, EX2700, EX6100v2, EX6150v2, EX6200v2, EX8000, R7800, R8900, R9000, WN2000RPTv3, WN3000RPv2/v3, WN3100RPv2, WNDR4300v2/v3, WNDR4500v3, WNR2000v5) caused by an unauthenticated? authenticated user and is trigge...
CVE-2019-20754
CVE-2019-20754 affects several NETGEAR devices due to a buffer overflow caused by a vulnerability exploitable by an authenticated user. Affected models include DGN2200/DGN2200B (before 1.0.0.58), D8500 (before 1.0.3.42), D7000v2 (before 1.0.0.51), D6400 (before 1.0.0.80), D6220 (before 1.0.0.44),...
CVE-2018-21229
CVE-2018-21229 affects multiple NETGEAR devices where security settings are misconfigured. Affected models and versions listed in the Red Hat advisory include R7500v2 prior to 1.0.3.20, R7800 prior to 1.0.2.38, WN3000RPv3 prior to 1.0.2.50, WNDR4300v2 prior to 1.0.0.50, and WNDR4500v3 prior to 1....
CVE-2019-20752
CVE-2019-20752 is a stored cross-site scripting (XSS) vulnerability affecting multiple NETGEAR devices. The Red Hat and NVD entries list affected models and firmware ranges (e.g., D3600 < 1.0.0.75, D6000 < 1.0.0.75, D7800 < 1.0.1.44, DM200 < 1.0.0.58, R7800 < 1.0.2.58, R8900 < 1...
CVE-2019-20728
CVE-2019-20728 affects a range of NETGEAR routers and gateways. The vulnerability is a buffer overflow triggered by an authenticated user, impacting multiple models (e.g., D6400, D7000v2, D7800, D8500, DGN2200v4, DGND2200Bv4, DM200, JNDR3000, RBK/RBR/RBS/RBW series, R6250, R6300v2, R6400/R6400v2,...
CVE-2019-20755
The CVE-2019-20755 entry concerns NETGEAR devices affected by a stack-based buffer overflow, exploitable by an authenticated user. Affected models and minimum/maximum versions are listed: D6220 (<1.0.0.46), D6400 (<1.0.0.80), D7000v2 (<1.0.0.51), D8500 (<1.0.3.42), DGN2200v1 (<1.0....
CVE-2021-38514
CVE-2021-38514 corresponds to an authentication bypass affecting numerous NETGEAR devices (examples: D3600, D6000, D6100, D6200, D6220, D6400, D7000, D7000v2, D7800, D8500, various WN/R series, XR500, etc.) with many revision thresholds (most listed “before” specific version numbers). Root cause ...
CVE-2019-20747
CVE-2019-20747 affects numerous NETGEAR devices (e.g., D6100, D7800, R7500v2, R7800, R8900, R9000, RAX120, various RBK/RBR/RBS/WNDR series, SRK/SRR/SRS) with a stack-based buffer overflow exploitable by an authenticated user. The vulnerability impacts specific firmware-before versions (e.g., D610...
CVE-2019-20730
The CVE-2019-20730 entry documents an SQL injection vulnerability affecting a wide range of NETGEAR consumer/enterprise routers and gateways. Affected devices include models such as D3600 (before 1.0.0.68), D6000 (before 1.0.0.68), D6200 (before 1.1.00.28), D6220 (before 1.0.0.40), D6400 (before ...
CVE-2018-21178
CVE-2018-21178 affects multiple NETGEAR routers (R7800, R9000, WNDR3700v4, WNDR4300, WNDR4300v2, WNDR4500v3, WNR2000v5). A stack-based buffer overflow is triggered by an authenticated user and can impact confidentiality, integrity, and availability. The affected versions are R7800 < 1.0.2.40, ...
CVE-2017-18706
CVE-2017-18706 affects several NETGEAR routers where security settings were incorrectly configured. Affected devices and firmware ranges include R6100 prior to 1.0.1.20, R7500 prior to 1.0.0.118, WNDR3700v4 prior to 1.0.2.88, WNDR4300 prior to 1.0.2.90, WNDR4300v2 prior to 1.0.0.48, WNDR4500v3 pr...
CVE-2019-20736
CVE-2019-20736 affects NETGEAR devices (D6000, D6100, R7800, R8900, R9000, WNDR3700v4, WNDR4300v1/v2, WNDR4500v3, WNR2000v5, XR500) via a stack-based buffer overflow in an authenticated context. Affected firmware versions are listed (e.g., D6000 < 1.0.0.72, D6100 < 1.0.0.63, R7800 < 1.0....
CVE-2018-21179
NETGEAR CVE-2018-21179 affects multiple devices via a stack-based buffer overflow in an authenticated context. Affected models and fixed/affected versions include: D6100 (< 1.0.0.57), D7800 (< 1.0.1.30), R7500 (< 1.0.0.122), R7500v2 (< 1.0.3.24), R7800 (< 1.0.2.40), R9000 (< 1.0...
CVE-2017-18713
The CVE-2017-18713 entry describes an arbitrary-file read vulnerability in several NETGEAR devices. Affected products and versions include D7800 (before 1.0.1.28), R6700 (before 1.0.1.36), R6900 (before 1.0.1.34), R7500v2 (before 1.0.3.20), R7800 (before 1.0.2.40), R9000 (before 1.0.2.52), WNDR43...
CVE-2017-18712
CVE-2017-18712 affects several NETGEAR devices (D7800 1.0.1.28 and earlier, R6100 1.0.1.20 and earlier, R7500 1.0.0.118 and earlier, R7500v2 1.0.3.20 and earlier, R7800 1.0.2.40 and earlier, R9000 1.0.2.52 and earlier, WNDR4300v2 1.0.0.48 and earlier, WNDR4500v3 1.0.0.48 and earlier) with an atta...
CVE-2018-21167
CVE-2018-21167 describes a stored XSS vulnerability affecting a range of NETGEAR devices (routers/gateways) where the web UI may process untrusted content. Affected models include D6100 (before 1.0.0.57), DM200 (before 1.0.0.50), EX2700 (before 1.0.1.32), EX6100v2 (before 1.0.1.70), EX6150v2 (bef...
CVE-2018-21180
CVE-2018-21180 describes a stack-based buffer overflow in certain NETGEAR devices that is exploitable by an authenticated user. Affected models and vulnerable versions include D6100 < 1.0.0.57, R7800 < 1.0.2.40, R9000 < 1.0.2.52, WNDR3700v4 < 1.0.2.92, WNDR4300 < 1.0.2.94, WNDR4300...
CVE-2019-20735
The CVE-2019-20735 entry affects NETGEAR devices and describes a stack-based buffer overflow triggered by an authenticated user. Affected models and firmware versions include: D3600 (before 1.0.0.75), D6000 (before 1.0.0.75), D6100 (before 1.0.0.63), R7800 (before 1.0.2.52), R8900 (before 1.0.4.2...
CVE-2019-20738
CVE-2019-20738 covers stored XSS affecting multiple NETGEAR devices (D6100, D7800, JNR1010v2, JWNR2010v5, RBK50/RBR50/RBS50, R60xx/R61xx/R6700v2/R6800/R6900v2/R7500v2/R7800/R9000, WN3000RPv2/v3, WNDR37xx/4300v1/v2/v4/v5, WNDR4500v3, WNR1000v4/2000v5/2020/2050, WNDR4300v2, etc.) with the most-comm...
CVE-2018-21175
CVE-2018-21175 affects multiple NETGEAR devices (D6100 prior to 1.0.0.57; R6100 prior to 1.0.1.20; R7800 prior to 1.0.2.40; R9000 prior to 1.0.2.52; WNDR3700v4 prior to 1.0.2.92; WNDR4300 prior to 1.0.2.94; WNDR4300v2 prior to 1.0.0.50; WNDR4500v3 prior to 1.0.0.50; WNR2000v5 prior to 1.0.0.62). ...
CVE-2018-21177
CVE-2018-21177 affects NETGEAR devices via a stack-based buffer overflow introduced in several firmware branches. Affected models and minimum vulnerable versions: D6100 before 1.0.0.57; R6100 before 1.0.1.20; R7800 before 1.0.2.40; R9000 before 1.0.2.52; WNDR3700v4 before 1.0.2.92; WNDR4300 befor...
CVE-2019-17372
CVE-2019-17372 affects multiple NETGEAR consumer routers (e.g., AC1450, D8500, R4500, R6300/R6300v2, R7000/R7000P, WNR3500L, WNDR4500/v2, WNDR4000, WNDR4500v2, WNR1000/v3, etc.). The underlying issue is an authentication bypass that allows remote attackers to disable all authentication by visitin...
CVE-2018-21174
CVE-2018-21174 affects several NETGEAR devices via an authenticated-user, stack-based buffer overflow in the device firmware. Affected models and their vulnerable firmwares are: D6100 < 1.0.0.57; R7500 < 1.0.0.122; R7800 < 1.0.2.40; R9000 < 1.0.2.52; WNDR3700v4 < 1.0.2.92; WNDR4300...
CVE-2018-21176
The CVE-2018-21176 entry affects multiple NETGEAR devices (D6100, R6100, R7500, R7800, R9000, WNDR3700v4, WNDR4300, WNDR4300v2, WNDR4500v3, WNR2000v5) with a stack-based buffer overflow exploitable by an authenticated user. Affected firmware versions are pre-1.0.0.57 (D6100), pre-1.0.1.20 (R6100)...
CVE-2018-21139
CVE-2018-21139 affects multiple NETGEAR consumer/SMB routers (e.g., D1500, D500, D6100, D6200, D6400, D7000 series, DGN2200, WNDR/ R-series, etc.) with firmware versions before the listed thresholds (e.g., D1500 before 1.0.0.27, D6100 before 1.0.0.58, etc.). Root cause is sensitive information di...
CVE-2019-20723
The vulnerability CVE-2019-20723 affects NETGEAR devices and is described as a stack-based buffer overflow exploitable by an authenticated user. Affected models and firmware ranges include D3600 (before 1.0.0.75), D6000 (before 1.0.0.75), D6100 (before 1.0.0.63), DM200 (before 1.0.0.58), EX2700 (...
CVE-2016-11059
NETGEAR devices are affected by CVE-2016-11059, exposing passwords. The affected models include AC1450, C6300, D500, D1500, D3600, D6000, D6100, D6200, D6200B, D6300B, D6300, DGN1000v3, DGN2200v1/v3, DGN2200V4, DGN2200Bv3/v4, DGND3700v1/v2, DGND3700Bv2, JNR1010v1/v2, JNR3300, JR6100, JR6150, JWNR...
CVE-2017-18785
CVE-2017-18785 affects a broad set of NETGEAR devices (e.g., D3600, D6000, D6100, D6200, D7000, D7800, D8500, DGN2200 variants, EX-series, R-series, WN-series, etc.) with various firmware versions (examples: D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, R6400 before 1.0.1.3...
CVE-2017-18764
CVE-2017-18764 affects a wide range of NETGEAR devices (e.g., D6100, D7000, D7800, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6100, R6120, R6220, R6700v2, R6800, R6900v2, R7500, R7500v2, R7800, R9000, WN3000RPv3, WNDR3700 variants, WNDR4300 variants, WNR1000/2000/2020/2050, etc.) where the co...
CVE-2018-21212
CVE-2018-21212 is a buffer overflow affecting multiple NETGEAR devices (e.g., D3600, D6100, D7800, EX2700, R6100, R7500/R7500v2, R7800, R9000, WN-series, WNDR-series) caused by memory operations performed without proper data boundary validation. Connected sources (CNVD-2021-46564, Red Hat securit...
CVE-2017-18769
CVE-2017-18769 affects a broad set of NETGEAR devices where an attacker can read arbitrary files. The public descriptions enumerate affected models and firmware ranges (e.g., D6220 < 1.0.0.40, D6400 < 1.0.0.74, D7000 < 1.0.1.60, D7800 < 1.0.1.34, D8500
CVE-2017-18778
Summary (CVE-2017-18778) : Several NETGEAR devices are affected by an incorrect configuration of security settings. Affected models include D6220, D6400, D7000, D7000v2, D7800, D8500, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6220, R6400, R6400v2, R6700v2, R6800, R6900v2, R7100LG, R7300DST, ...
CVE-2017-18788
CVE-2017-18788 affects a wide range of NETGEAR devices (e.g., D3600, D6000, D6100, D6200, D6220, D6400, D7000 family, DGN2200v4, EX-series, R-series, etc.) with command injection vulnerability triggered by an authenticated user. Affected firmware versions are listed in the entry (e.g., D3600 befo...
CVE-2018-21145
CVE-2018-21145 affects multiple NETGEAR devices (D7800, DM200, R6100, R7500, R7800, R8900, R9000, WNDR3700v4, WNDR4300, WNDR4300v2, WNDR4500v3, WNR2000v5) with a stack-based buffer overflow exploitable by an authenticated user. The affected version ranges are: D7800 < 1.0.1.34; DM200 < 1.0....
CVE-2018-21153
The CVE-2018-21153 entry describes a pre-auth buffer overflow affecting multiple NETGEAR devices. Affected products include D7800 (pre-1.0.1.34), DM200 (pre-1.0.0.50), EX-series (EX2700, EX6100v2, EX6150v2, EX6200v2, EX6400, EX7300, EX8000) with various pre-patch version thresholds, plus R6100, R...
CVE-2018-21157
CVE-2018-21157 affects several NETGEAR devices via command injection by an authenticated user. Affected models and firmware ranges include D7800 prior to 1.0.1.28; R6700 prior to 1.0.1.44; R6900 prior to 1.0.1.44; R7000 prior to 1.0.9.28; R7500v2 prior to 1.0.3.24; R7800 prior to 1.0.2.38; R9000 ...
CVE-2018-21168
CVE-2018-21168 affects a broad set of NETGEAR devices (D7000, D7800, D8500, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6050, R6220, R6400, R6400v2, R6700v2, R6800, R6900v2, R7300DST, R7500, R7500v2, R7800, R7900P, R8000P, R8300, R8500, R9000, WNDR3700v4/v5, WNDR4300/v2, WNDR4500v3, WNR1000v4, WNR202...
CVE-2018-21194
CVE-2018-21194 describes a stack-based buffer overflow in multiple NETGEAR devices triggered by an authenticated user. Affected models include D6100, D7800, R6100, R7500, R7500v2, R7800, R9000, WNDR3700v4, WNDR4300, WNDR4300v2, WNDR4500v3, and WNR2000v5, with specific firmware versions listed (be...
CVE-2018-21206
CVE-2018-21206 affects multiple NETGEAR devices (e.g., D7800, EX2700, R6100, R7500/R7500v2, R7800, R9000, WN-series, WNDR-series) due to a stack-based buffer overflow triggered by unauthenticated input. Affected firmware versions are listed in the CVE records (e.g., D7800 < 1.0.1.30, R6100 <...
CVE-2018-21211
CVE-2018-21211 affects NETGEAR devices (D3600, D6000, D6100, D7800, R7500, R7500v2, R7800, R9000, WNDR3700v4, WNDR4300, WNDR4300v2, WNDR4500v3, WNR2000v5) with specific pre-existing firmware versions. Multiple connected sources (EUVD-2018-13729, RH:CVE-2018-21211, CNVD-2021-46563, NVD/NVD list, C...
CVE-2019-20729
CVE-2019-20729 affects several NETGEAR router models (e.g., JNDR3000, R6250, R6300v2, R6400/r6400v2, R6700, R6900, R7000, R6900P/R7000P, R7300DST, R7900/R8000, R7900P/R8000P, R8300, R8500, WNDR3400v3, WNDR4500v2, WNR3500Lv2 and others) with an issue described as incorrect configuration of securit...