Netgear

Xr1000 Firmware

21 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2024-35517

  • EPSS 1.23%
  • Published 11.10.2024 22:15:03
  • Last modified 13.03.2025 17:15:31

Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_remote_smb_conf.cgi via the share_name parameter.

6.5

CVE-2021-34983

  • EPSS 0.18%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:40:56

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...

8.8

CVE-2021-34982

  • EPSS 5.57%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:41:19

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...

7.5

CVE-2021-45654

  • EPSS 0.39%
  • Published 26.12.2021 01:15:20
  • Last modified 21.11.2024 06:32:47

NETGEAR XR1000 devices before 1.0.0.58 are affected by disclosure of sensitive information.

6.5

CVE-2021-45643

  • EPSS 0.07%
  • Published 26.12.2021 01:15:19
  • Last modified 21.11.2024 06:32:45

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6400v2 before 1.0.4.118, R6700v3 before 1.0.4.118, and XR1000 before 1.0.0.58.

10

CVE-2021-45613

  • EPSS 1.53%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, D7000v2 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 be...

10

CVE-2021-45622

  • EPSS 2.67%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:42

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, EAX20 before 1.0.0.58, EAX80 before 1.0.1.68, EX7500 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 bef...

10

CVE-2021-45621

  • EPSS 1.53%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:41

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 3.2.18.2, EAX20 before 1.0.0.58, EAX80 before 1.0.1.68, EX3700 before 1.0.0.94, EX3800 before 1.0.0.94, EX6120...

10

CVE-2021-45620

  • EPSS 1.41%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:41

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, EAX20 before 1.0.0.58, EAX80 before 1.0.1.68, LAX20 before 1.1.6.28, MR60 before 1.0.6.116, MR80 befo...

10

CVE-2021-45616

  • EPSS 1.53%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR750 before 3.2.18.2, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 before 1.0.6.116, R6900P before 1.3.3.140, R7000 ...