- EPSS 0.54%
- Veröffentlicht 05.11.2024 15:15:25
- Zuletzt bearbeitet 21.05.2025 20:13:00
Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a command injection vulnerability via the wan_gateway parameter at genie_fix2.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a...
CVE-2024-51002
- EPSS 0.09%
- Veröffentlicht 05.11.2024 15:15:24
- Zuletzt bearbeitet 30.04.2025 16:30:32
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a stack overflow via the l2tp_user_ip parameter at l2tp.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a ...
CVE-2024-51003
- EPSS 0.09%
- Veröffentlicht 05.11.2024 15:15:24
- Zuletzt bearbeitet 07.05.2025 15:24:54
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to multiple stack overflow vulnerabilities in the component ap_mode.cgi via the apmode_dns1_pri and apmode_dns1_sec parameters. These vulnerabilities...
- EPSS 0.54%
- Veröffentlicht 05.11.2024 15:15:24
- Zuletzt bearbeitet 21.05.2025 19:59:27
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a command injection vulnerability in the component ap_mode.cgi via the apmode_gateway parameter. This vulnerability allows attackers to ex...
CVE-2024-51011
- EPSS 0.09%
- Veröffentlicht 05.11.2024 15:15:24
- Zuletzt bearbeitet 21.05.2025 20:23:30
Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via the pppoe_localip parameter at pppoe.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST requ...
CVE-2024-50996
- EPSS 0.09%
- Veröffentlicht 05.11.2024 15:15:23
- Zuletzt bearbeitet 07.05.2025 15:25:23
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a stack overflow via the bpa_server parameter at genie_bpa.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via...
CVE-2024-50997
- EPSS 0.09%
- Veröffentlicht 05.11.2024 15:15:23
- Zuletzt bearbeitet 01.05.2025 18:22:26
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a stack overflow via the pptp_user_ip parameter at pptp.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a ...
CVE-2021-34982
- EPSS 5.57%
- Veröffentlicht 07.05.2024 23:15:13
- Zuletzt bearbeitet 14.08.2025 01:41:19
NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...
CVE-2021-34983
- EPSS 0.18%
- Veröffentlicht 07.05.2024 23:15:13
- Zuletzt bearbeitet 14.08.2025 01:40:56
NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...
CVE-2023-36187
- EPSS 4.54%
- Veröffentlicht 01.09.2023 16:15:08
- Zuletzt bearbeitet 21.11.2024 08:09:23
Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.