Netgear

Wndr3400v3 Firmware

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2021-34982

  • EPSS 5.57%
  • Veröffentlicht 07.05.2024 23:15:13
  • Zuletzt bearbeitet 14.08.2025 01:41:19

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...

6.5

CVE-2021-34983

  • EPSS 0.18%
  • Veröffentlicht 07.05.2024 23:15:13
  • Zuletzt bearbeitet 14.08.2025 01:40:56

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...

7.2

CVE-2021-45640

  • EPSS 0.59%
  • Veröffentlicht 26.12.2021 01:15:19
  • Zuletzt bearbeitet 21.11.2024 06:32:45

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6200 before 1.1.00.34, D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000 before 1.0.1.74, D7000v2 befo...

8.8

CVE-2021-45641

  • EPSS 0.37%
  • Veröffentlicht 26.12.2021 01:15:19
  • Zuletzt bearbeitet 21.11.2024 06:32:45

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6200 before 1.1.00.34, D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000 before 1.0.1.74, D7000v2 befo...

9.8

CVE-2021-45611

  • EPSS 0.34%
  • Veröffentlicht 26.12.2021 01:15:18
  • Zuletzt bearbeitet 21.11.2024 06:32:39

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects DC112A before 1.0.0.52, R6400 before 1.0.1.68, RAX200 before 1.0.3.106, WNDR3400v3 before 1.0.1.38, XR300 before 1.0.3.68, R8500 before 1.0.2.144, ...

8.8

CVE-2021-34991

  • EPSS 0.57%
  • Veröffentlicht 15.11.2021 16:15:09
  • Zuletzt bearbeitet 21.11.2024 06:11:39

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400v2 1.0.4.106_10.0.80 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the U...

10

CVE-2020-35796

  • EPSS 1.4%
  • Veröffentlicht 30.12.2020 00:15:14
  • Zuletzt bearbeitet 21.11.2024 05:28:07

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects CBR40 before 2.5.0.10, D6220 before 1.0.0.60, D6400 before 1.0.0.94, D7000v2 before 1.0.0.62, D8500 before 1.0.3.50, DC112A before 1.0.0.48, DGN220...

9.7

CVE-2020-35800

  • EPSS 1.25%
  • Veröffentlicht 30.12.2020 00:15:14
  • Zuletzt bearbeitet 21.11.2024 05:28:08

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 before 1.2.0.72, AC2400 before 1.2.0.72, AC2600 before 1.2.0.72, CBK40 before 2.5.0.10, CBR40 before 2.5.0.10, D6000 before 1.0.0.80, D6220 befo...

10

CVE-2019-14363

Exploit
  • EPSS 1.3%
  • Veröffentlicht 28.07.2019 18:15:11
  • Zuletzt bearbeitet 21.11.2024 04:26:35

A stack-based buffer overflow in the upnpd binary running on NETGEAR WNDR3400v3 routers with firmware version 1.0.1.18_1.0.63 allows an attacker to remotely execute arbitrary code via a crafted UPnP SSDP packet.