Netgear

Cbr40 Firmware

48 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-28340

Exploit
  • EPSS 0.25%
  • Published 12.03.2024 17:15:59
  • Last modified 27.05.2025 14:23:12

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required.

5.4

CVE-2024-28339

Exploit
  • EPSS 0.09%
  • Published 12.03.2024 17:15:59
  • Last modified 27.05.2025 14:23:49

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required.

9.8

CVE-2023-36187

  • EPSS 4.54%
  • Published 01.09.2023 16:15:08
  • Last modified 21.11.2024 08:09:23

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.

8.8

CVE-2022-27646

  • EPSS 1.48%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Although authentication is required to exploit this vulnerability, the existing authentication mech...

8.8

CVE-2022-27644

  • EPSS 0.09%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The speci...

4.8

CVE-2021-45671

  • EPSS 0.22%
  • Published 26.12.2021 01:15:21
  • Last modified 21.11.2024 06:32:50

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX80 before 1.0.1.62, EX7500 before 1.0.0.72, R7900 before 1.0.4.38, R8000 before 1.0.4.68, RAX200 before 1.0.4.120, RBS40V before 2.6.1.4, RBW30 before 2.6.1.4,...

4.8

CVE-2021-45670

  • EPSS 0.45%
  • Published 26.12.2021 01:15:21
  • Last modified 21.11.2024 06:32:50

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7000 before 1.0.11.116, R7900 before 1.0.4....

4.8

CVE-2021-45667

  • EPSS 0.45%
  • Published 26.12.2021 01:15:20
  • Last modified 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7960P before 1.4.1.66, RAX200 before 1.0.3....

4.8

CVE-2021-45666

  • EPSS 0.27%
  • Published 26.12.2021 01:15:20
  • Last modified 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX80 before 1.0.1.64, EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, RBW30 before 2.6.1....

9.8

CVE-2021-45630

  • EPSS 2.18%
  • Published 26.12.2021 01:15:19
  • Last modified 21.11.2024 06:32:43

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, R...