CVE-2019-20767
- EPSS 0.66%
- Published 15.04.2020 14:15:18
- Last modified 21.11.2024 04:39:18
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.60, D3600 before 1.0.0.75, D6000 before 1.0.0.75, R9000 before 1.0.4.26, R8900 before 1.0.4.26, R7800 before 1.0.2.52, WND...
CVE-2019-17372
- EPSS 0.51%
- Published 09.10.2019 13:15:16
- Last modified 21.11.2024 04:32:12
Certain NETGEAR devices allow remote attackers to disable all authentication requirements by visiting genieDisableLanChanged.cgi. The attacker can then, for example, visit MNU_accessPassword_recovered.html to obtain a valid new admin password. This a...
CVE-2016-5638
- EPSS 1.27%
- Published 24.07.2018 15:29:00
- Last modified 21.11.2024 02:54:44
There are few web pages associated with the genie app on the Netgear WNDR4500 running firmware version V1.0.1.40_1.0.6877. Genie app adds some capabilities over the Web GUI and can be accessed even when you are away from home. A remote attacker can a...
CVE-2017-5521
- EPSS 93.87%
- Published 17.01.2017 09:59:00
- Last modified 20.04.2025 01:37:25
An issue was discovered on NETGEAR R8500, R8300, R7000, R6400, R7300, R7100LG, R6300v2, WNDR3400v3, WNR3500Lv2, R6250, R6700, R6900, and R8000 devices. They are prone to password disclosure via simple crafted requests to the web management server. Th...