CVE-2020-26913
- EPSS 0.31%
- Veröffentlicht 09.10.2020 07:15:17
- Zuletzt bearbeitet 21.11.2024 05:20:28
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.63, R7800 before 1.0.2.60, R8900 before 1.0.4.26, R9000 before 1.0.4.26, RBK20 before 2.3.0.28, RBR20 before 2.3.0.28, RBS...
- EPSS 91.07%
- Veröffentlicht 30.01.2017 04:59:00
- Zuletzt bearbeitet 21.04.2026 16:26:40
The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated attacker to achieve remote code execution.
CVE-2016-10175
- EPSS 81.61%
- Veröffentlicht 30.01.2017 04:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRS_netgear_success.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 ...
CVE-2016-10176
- EPSS 86.62%
- Veröffentlicht 30.01.2017 04:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The NETGEAR WNR2000v5 router allows an administrator to perform sensitive actions by invoking the apply.cgi URL on the web server of the device. This special URL is handled by the embedded web server (uhttpd) and processed accordingly. The web server...