Netgear

Ex6120 Firmware

42 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-4140

Exploit
  • EPSS 0.21%
  • Published 30.04.2025 21:31:04
  • Last modified 12.05.2025 19:40:10

A vulnerability, which was classified as critical, has been found in Netgear EX6120 1.0.3.94. Affected by this issue is the function sub_30394. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. The v...

8.8

CVE-2025-4139

  • EPSS 0.18%
  • Published 30.04.2025 20:31:04
  • Last modified 23.06.2025 15:13:27

A vulnerability classified as critical was found in Netgear EX6120 1.0.0.68. Affected by this vulnerability is the function fwAcosCgiInbound. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. The ven...

6.8

CVE-2024-35519

  • EPSS 0.48%
  • Published 14.10.2024 22:15:03
  • Last modified 17.03.2025 16:15:21

Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable to command injection in operating_mode.cgi via the ap_mode parameter.

6.8

CVE-2024-35518

  • EPSS 0.48%
  • Published 14.10.2024 22:15:03
  • Last modified 19.03.2025 15:15:46

Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the wan_dns1_pri parameter.

6.5

CVE-2021-34983

  • EPSS 0.18%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:40:56

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...

8.8

CVE-2021-34982

  • EPSS 5.57%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:41:19

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...

8.8

CVE-2022-27643

  • EPSS 4.65%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the h...

4.8

CVE-2021-45670

  • EPSS 0.45%
  • Published 26.12.2021 01:15:21
  • Last modified 21.11.2024 06:32:50

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7000 before 1.0.11.116, R7900 before 1.0.4....

4.8

CVE-2021-45667

  • EPSS 0.45%
  • Published 26.12.2021 01:15:20
  • Last modified 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7960P before 1.4.1.66, RAX200 before 1.0.3....

4.8

CVE-2021-45665

  • EPSS 0.27%
  • Published 26.12.2021 01:15:20
  • Last modified 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects EAX20 before 1.0.0.36, EAX80 before 1.0.1.62, EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, RBW30 before 2.6.1....