CVE-2023-23110
- EPSS 0.13%
- Published 02.02.2023 15:17:43
- Last modified 26.03.2025 21:15:18
An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the u...
CVE-2016-11059
- EPSS 0.32%
- Published 28.04.2020 17:15:12
- Last modified 21.11.2024 02:45:24
Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before 2017-01-06, D500 before 2017-01-06, D1500 before 2017-01-06, D3600 before 2017-01-06, D6000 before 2017-01-06, D6100 before 2017-01-06, D62...
CVE-2017-18731
- EPSS 0.12%
- Published 24.04.2020 13:15:11
- Last modified 21.11.2024 03:20:46
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6100 before 1.0.1.16, R7500 before 1.0.0.112, R7500v2 before 1.0.3.20, R7800 before 1.0.2.36, and WNR2000v5 before 1.0.0.58.
- EPSS 91.84%
- Published 30.01.2017 04:59:00
- Last modified 20.04.2025 01:37:25
The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated attacker to achieve remote code execution.