CVE-2019-20692
- EPSS 0.23%
- Published 16.04.2020 19:15:23
- Last modified 21.11.2024 04:39:05
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.44, D6400 before 1.0.0.78, D7000v2 before 1.0.0.51, D8500 before 1.0.3.42, DGN2200v4 before 1.0.0.110, DGND2200Bv4 b...
CVE-2013-3516
- EPSS 0.22%
- Published 13.11.2019 20:15:10
- Last modified 21.11.2024 01:53:47
NETGEAR WNR3500U and WNR3500L routers uses form tokens abased solely on router's current date and time, which allows attackers to guess the CSRF tokens.
CVE-2013-3517
- EPSS 0.28%
- Published 13.11.2019 19:15:11
- Last modified 21.11.2024 01:53:48
Cross-site scripting (XSS) vulnerability in NETGEAR WNR3500U and WNR3500L.
- EPSS 0.52%
- Published 13.11.2019 18:15:10
- Last modified 21.11.2024 01:56:00
Symlink Traversal vulnerability in NETGEAR WNR3500U and WNR3500L due to misconfiguration in the SMB service.
CVE-2019-17372
- EPSS 0.51%
- Published 09.10.2019 13:15:16
- Last modified 21.11.2024 04:32:12
Certain NETGEAR devices allow remote attackers to disable all authentication requirements by visiting genieDisableLanChanged.cgi. The attacker can then, for example, visit MNU_accessPassword_recovered.html to obtain a valid new admin password. This a...