Netgear

Ex3700 Firmware

42 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9

CVE-2025-5934

Exploit
  • EPSS 0.23%
  • Veröffentlicht 10.06.2025 03:31:08
  • Zuletzt bearbeitet 20.06.2025 13:11:11

A vulnerability was found in Netgear EX3700 up to 1.0.0.88. It has been classified as critical. Affected is the function sub_41619C of the file /mtd. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely....

6.8

CVE-2024-35519

  • EPSS 0.48%
  • Veröffentlicht 14.10.2024 22:15:03
  • Zuletzt bearbeitet 17.03.2025 16:15:21

Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable to command injection in operating_mode.cgi via the ap_mode parameter.

7.2

CVE-2024-35522

Exploit
  • EPSS 1.76%
  • Veröffentlicht 11.10.2024 22:15:04
  • Zuletzt bearbeitet 13.03.2025 17:15:32

Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operating_mode.cgi via the ap_mode parameter with ap_24g_manual set to 1 and ap_24g_manual_sec set to NotNone.

6.5

CVE-2021-34983

  • EPSS 0.18%
  • Veröffentlicht 07.05.2024 23:15:13
  • Zuletzt bearbeitet 14.08.2025 01:40:56

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...

8.8

CVE-2021-34982

  • EPSS 5.57%
  • Veröffentlicht 07.05.2024 23:15:13
  • Zuletzt bearbeitet 14.08.2025 01:41:19

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...

8.8

CVE-2022-27643

  • EPSS 4.65%
  • Veröffentlicht 29.03.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the h...

4.8

CVE-2021-45670

  • EPSS 0.45%
  • Veröffentlicht 26.12.2021 01:15:21
  • Zuletzt bearbeitet 21.11.2024 06:32:50

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7000 before 1.0.11.116, R7900 before 1.0.4....

4.8

CVE-2021-45666

  • EPSS 0.27%
  • Veröffentlicht 26.12.2021 01:15:20
  • Zuletzt bearbeitet 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX80 before 1.0.1.64, EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, RBW30 before 2.6.1....

4.8

CVE-2021-45665

  • EPSS 0.27%
  • Veröffentlicht 26.12.2021 01:15:20
  • Zuletzt bearbeitet 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects EAX20 before 1.0.0.36, EAX80 before 1.0.1.62, EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, RBW30 before 2.6.1....

4.8

CVE-2021-45667

  • EPSS 0.45%
  • Veröffentlicht 26.12.2021 01:15:20
  • Zuletzt bearbeitet 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7960P before 1.4.1.66, RAX200 before 1.0.3....