Lucene search

K
NetgearWnr614 Firmware

11 matches found

CVE
CVE
added 2017/01/30 4:59 a.m.951 views

CVE-2016-10174

The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated attacker to achieve remote code execution.

10CVSS9.9AI score0.9184EPSS
CVE
CVE
added 2024/06/07 3:15 p.m.83 views

CVE-2024-36788

Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies. This allows attackers to possibly intercept and access sensitive communications between the router and connected devices.

5.9CVSS6.5AI score0.00052EPSS
CVE
CVE
added 2024/06/07 3:15 p.m.75 views

CVE-2024-36787

An issue in Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 allows attackers to bypass authentication and access the administrative interface via unspecified vectors.

8.8CVSS6.8AI score0.00014EPSS
CVE
CVE
added 2024/06/07 3:15 p.m.74 views

CVE-2024-36789

An issue in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to create passwords that do not conform to defined security standards.

8.1CVSS6.5AI score0.00071EPSS
CVE
CVE
added 2024/06/07 3:15 p.m.71 views

CVE-2024-36790

Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 was discovered to store credentials in plaintext.

8.8CVSS6.8AI score0.00036EPSS
CVE
CVE
added 2024/06/06 9:15 p.m.69 views

CVE-2024-36795

Insecure permissions in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to access URLs and directories embedded within the firmware via unspecified vectors.

4CVSS7.2AI score0.00115EPSS
CVE
CVE
added 2024/06/07 3:15 p.m.61 views

CVE-2024-36792

An issue in the implementation of the WPS in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to gain access to the router's pin.

8.2CVSS6.7AI score0.00072EPSS
CVE
CVE
added 2020/04/21 7:15 p.m.51 views

CVE-2017-18791

Certain NETGEAR devices are affected by CSRF. This affects R6050/JR6150 before 1.0.1.7, PR2000 before 1.0.0.17, R6220 before 1.1.0.50, WNDR3700v5 before 1.1.0.48, JNR1010v2 before 1.1.0.40, JWNR2010v5 before 1.1.0.40, WNR1000v4 before 1.1.0.40, WNR2020 before 1.1.0.40, WNR2050 before 1.1.0.40, WNR6...

8.8CVSS8.7AI score0.00167EPSS
CVE
CVE
added 2020/04/16 7:15 p.m.46 views

CVE-2019-20690

Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.30, D7000 before 1.0.1.66, R6020 before 1.0.0.34, R6080 before 1.0.0.34, R6120 before 1.0.0.44, R6220 before 1.1.0.68, WNR2020 before 1.1.0.54, and WNR614 before 1.1.0.54.

8.8CVSS8.7AI score0.00063EPSS
CVE
CVE
added 2025/06/03 1:15 p.m.40 views

CVE-2025-5495

A vulnerability was found in Netgear WNR614 1.1.0.28_1.0.1WW. It has been classified as critical. This affects an unknown part of the component URL Handler. The manipulation with the input %00currentsetting.htm leads to improper authentication. It is possible to initiate the attack remotely. The ex...

9.8CVSS7.3AI score0.01196EPSS
CVE
CVE
added 2020/04/28 5:15 p.m.38 views

CVE-2016-11057

Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-01-06, WNR614 before 2017-01-06, WNR618 before 2017-01-06, JWNR2000v5 before 2017-01-06, WNR2020 before 2017-01-06, JWNR2010v5 before 2017-01-06, WNR1000v4 before 2017-01-06, WNR2020v2 befo...

7.5CVSS7.5AI score0.00276EPSS