Netgear

Lax20 Firmware

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2021-34982

  • EPSS 5.57%
  • Veröffentlicht 07.05.2024 23:15:13
  • Zuletzt bearbeitet 14.08.2025 01:41:19

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is no...

6.5

CVE-2021-34983

  • EPSS 0.18%
  • Veröffentlicht 07.05.2024 23:15:13
  • Zuletzt bearbeitet 14.08.2025 01:40:56

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR rou...

9.8

CVE-2023-36187

  • EPSS 4.54%
  • Veröffentlicht 01.09.2023 16:15:08
  • Zuletzt bearbeitet 21.11.2024 08:09:23

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.

8.8

CVE-2022-27642

  • EPSS 0.04%
  • Veröffentlicht 29.03.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:56:04

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ht...

8.8

CVE-2022-27645

  • EPSS 0.17%
  • Veröffentlicht 29.03.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within readycloud_control.cgi. ...

8

CVE-2022-27647

  • EPSS 0.06%
  • Veröffentlicht 29.03.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Although authentication is required to exploit this vulnerability, the existing authentication mech...

10

CVE-2021-45612

  • EPSS 0.51%
  • Veröffentlicht 26.12.2021 01:15:18
  • Zuletzt bearbeitet 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, EAX20 before 1.0.0.58, EAX80 before 1.0.1.68, EX7500 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 bef...

10

CVE-2021-45613

  • EPSS 1.53%
  • Veröffentlicht 26.12.2021 01:15:18
  • Zuletzt bearbeitet 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, D7000v2 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 be...

10

CVE-2021-45614

  • EPSS 0.92%
  • Veröffentlicht 26.12.2021 01:15:18
  • Zuletzt bearbeitet 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7000v2 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 before 1.0.6.116, RAX15 before 1.0.3.96, RAX20 b...

10

CVE-2021-45616

  • EPSS 1.53%
  • Veröffentlicht 26.12.2021 01:15:18
  • Zuletzt bearbeitet 21.11.2024 06:32:40

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR750 before 3.2.18.2, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 before 1.0.6.116, R6900P before 1.3.3.140, R7000 ...