Wnr2000v5 Firmware Security Vulnerabilities and Issues — Wnr2000v5 Firmware CVE List

Lucene search

NetgearWnr2000v5 Firmware

3 matches found

CVE•added 2017/01/30 4:59 a.m.•966 views

CVE-2016-10174

The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated attacker to achieve remote code execution.

10CVSS9.9AI score0.9184EPSS

CVE•added 2017/01/30 4:59 a.m.•41 views

CVE-2016-10176

The NETGEAR WNR2000v5 router allows an administrator to perform sensitive actions by invoking the apply.cgi URL on the web server of the device. This special URL is handled by the embedded web server (uhttpd) and processed accordingly. The web server also contains another URL, apply_noauth.cgi, tha...

9.8CVSS9.8AI score0.86619EPSS

CVE•added 2017/01/30 4:59 a.m.•35 views

CVE-2016-10175

The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRS_netgear_success.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows resetting the answers t...

9.8CVSS9.1AI score0.86619EPSS