Netgear

R7000 Firmware

134 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-44650

  • EPSS 0.13%
  • Published 21.07.2025 00:00:00
  • Last modified 07.08.2025 17:58:36

In Netgear R7000 V1.3.1.64_10.1.36 and EAX80 V1.0.1.70_1.0.2, the USERLIMIT_GLOBAL option is set to 0 in the bftpd.conf configuration file. This can cause DoS attacks when unlimited users are connected.

6.8

CVE-2024-35520

  • EPSS 0.64%
  • Published 14.10.2024 22:15:03
  • Last modified 16.10.2024 17:14:31

Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMT_invite.cgi via device_name2 parameter.

8.8

CVE-2021-34982

  • EPSS 5.57%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:41:19

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...

6.5

CVE-2021-34983

  • EPSS 0.18%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:40:56

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...

6.5

CVE-2024-1431

Exploit
  • EPSS 0.05%
  • Published 11.02.2024 03:15:07
  • Last modified 21.11.2024 08:50:34

A vulnerability was found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. Affected by this issue is some unknown functionality of the file /debuginfo.htm of the component Web Management Interface. The manipulation leads to informa...

6.5

CVE-2024-1430

Exploit
  • EPSS 0.05%
  • Published 11.02.2024 01:15:07
  • Last modified 21.11.2024 08:50:34

A vulnerability has been found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /currentsetting.htm of the component Web Management Interface. The manipulation ...

9.8

CVE-2023-36187

  • EPSS 4.54%
  • Published 01.09.2023 16:15:08
  • Last modified 21.11.2024 08:09:23

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.

8.8

CVE-2022-27641

  • EPSS 0.14%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:04

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the N...

8.8

CVE-2022-27642

  • EPSS 0.04%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:04

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ht...

8.8

CVE-2022-27643

  • EPSS 4.65%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the h...