Netgear

Lax20 Firmware

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2021-34982

  • EPSS 5.57%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:41:19

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...

6.5

CVE-2021-34983

  • EPSS 0.18%
  • Published 07.05.2024 23:15:13
  • Last modified 14.08.2025 01:40:56

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...

9.8

CVE-2023-36187

  • EPSS 4.54%
  • Published 01.09.2023 16:15:08
  • Last modified 21.11.2024 08:09:23

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.

8.8

CVE-2022-27642

  • EPSS 0.04%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:04

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ht...

8.8

CVE-2022-27645

  • EPSS 0.17%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within readycloud_control.cgi. ...

8

CVE-2022-27647

  • EPSS 0.06%
  • Published 29.03.2023 19:15:08
  • Last modified 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Although authentication is required to exploit this vulnerability, the existing authentication mech...

10

CVE-2021-45612

  • EPSS 0.51%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, EAX20 before 1.0.0.58, EAX80 before 1.0.1.68, EX7500 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 bef...

10

CVE-2021-45613

  • EPSS 1.53%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, D7000v2 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 be...

10

CVE-2021-45614

  • EPSS 0.92%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7000v2 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 before 1.0.6.116, RAX15 before 1.0.3.96, RAX20 b...

10

CVE-2021-45616

  • EPSS 1.53%
  • Published 26.12.2021 01:15:18
  • Last modified 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR750 before 3.2.18.2, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 before 1.0.6.116, R6900P before 1.3.3.140, R7000 ...