Netgear CVEs and Security Vulnerabilities

Filtered by vendor Netgear Subscriptions

Search

Switch to Advanced Search (Beta)

Total 1226 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2020-35795	1 Netgear	154 Ac2100, Ac2100 Firmware, Ac2400 and 151 more	2024-11-21	9.8 Critical
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects AC2100 before 1.2.0.72, AC2400 before 1.2.0.72, AC2600 before 1.2.0.72, CBK40 before 2.5.0.10, CBR40 before 2.5.0.10, D7800 before 1.0.1.58, EAX20 before 1.0.0.36, EAX80 before 1.0.1.62, EX7500 before 1.0.0.68, MK62 before 1.0.5.102, MR60 before 1.0.5.102, MS60 before 1.0.5.102, R6120 before 1.0.0.70, R6220 before 1.1.0.100, R6230 before 1.1.0.100, R6260 before 1.1.0.76, R6330 before 1.1.0.76, R6350 before 1.1.0.76, R6400 before 1.0.1.62, R6400v2 before 1.0.4.98, R6700 before 1.0.2.16, R6700v2 before 1.2.0.72, R6700v3 before 1.0.4.98, R6800 before 1.2.0.72, R6850 before 1.1.0.76, R6900P before 1.3.2.124, R6900 before 1.0.2.16, R6900v2 before 1.2.0.72, R7000 before 1.0.11.106, R7000P before 1.3.2.124, R7200 before 1.2.0.72, R7350 before 1.2.0.72, R7400 before 1.2.0.72, R7450 before 1.2.0.72, R7800 before 1.0.2.74, R7850 before 1.0.5.60, R7900 before 1.0.4.26, R7900P before 1.4.1.62, R7960P before 1.4.1.62, R8000 before 1.0.4.58, R8000P before 1.4.1.62, R8900 before 1.0.5.24, R9000 before 1.0.5.24, RAX120 before 1.0.1.136, RAX15 before 1.0.1.64, RAX20 before 1.0.1.64, RAX200 before 1.0.2.102, RAX45 before 1.0.2.64, RAX50 before 1.0.2.64, RAX75 before 1.0.3.102, RAX80 before 1.0.3.102, RBK12 before 2.6.1.44, RBR10 before 2.6.1.44, RBS10 before 2.6.1.44, RBK20 before 2.6.1.38, RBR20 before 2.6.1.36, RBS20 before 2.6.1.38, RBK40 before 2.6.1.38, RBR40 before 2.6.1.36, RBS40 before 2.6.1.38, RBK50 before 2.6.1.40, RBR50 before 2.6.1.40, RBS50 before 2.6.1.40, RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK842 before 3.2.16.6, RBR840 before 3.2.16.6, RBS840 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, RBS850 before 3.2.16.6, RS400 before 1.5.0.48, XR300 before 1.0.3.50, XR450 before 2.3.2.66, XR500 before 2.3.2.66, and XR700 before 1.0.1.34.
CVE-2020-35794	1 Netgear	14 Rbk752, Rbk752 Firmware, Rbk852 and 11 more	2024-11-21	8.4 High
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBS40V before 2.6.1.4, RBK752 before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK852 before 3.2.15.25, RBR850 before 3.2.15.25, and RBS850 before 3.2.15.25.
CVE-2020-35793	1 Netgear	10 D7800, D7800 Firmware, R7500 and 7 more	2024-11-21	6.1 Medium
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.58, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.5.2, and R9000 before 1.0.5.2.
CVE-2020-35792	1 Netgear	8 R7500, R7500 Firmware, R7800 and 5 more	2024-11-21	8.3 High
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7500v2 before 1.0.3.48, R8900 before 1.0.5.2, R9000 before 1.0.5.2, and R7800 before 1.0.2.68.
CVE-2020-35791	1 Netgear	6 R7800, R7800 Firmware, R8900 and 3 more	2024-11-21	6.4 Medium
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7800 before 1.0.2.68, R8900 before 1.0.5.2, and R9000 before 1.0.5.2.
CVE-2020-35790	1 Netgear	8 D7800, D7800 Firmware, R7800 and 5 more	2024-11-21	6.4 Medium
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.68, R8900 before 1.0.4.26, and R9000 before 1.0.4.26.
CVE-2020-35789	1 Netgear	2 Nms300, Nms300 Firmware	2024-11-21	8.8 High
NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an authenticated user.
CVE-2020-35788	1 Netgear	2 Wac104, Wac104 Firmware	2024-11-21	7.6 High
NETGEAR WAC104 devices before 1.0.4.13 are affected by a buffer overflow by an authenticated user.
CVE-2020-35787	1 Netgear	52 D3600, D3600 Firmware, D6000 and 49 more	2024-11-21	8 High
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, D6200 before 1.1.00.36, D7000 before 1.0.1.70, EX6200v2 before 1.0.1.78, EX7000 before 1.0.1.78, EX8000 before 1.0.1.186, JR6150 before 1.0.1.18, PR2000 before 1.0.0.28, R6020 before 1.0.0.42, R6050 before 1.0.1.18, R6080 before 1.0.0.42, R6120 before 1.0.0.46, R6220 before 1.1.0.80, R6260 before 1.1.0.64, R6300v2 before 1.0.4.34, R6700 before 1.0.2.6, R6700v2 before 1.2.0.36, R6800 before 1.2.0.36, R6900 before 1.0.2.4, R6900P before 1.3.1.64, R6900v2 before 1.2.0.36, R7000 before 1.0.9.42, R7000P before 1.3.1.64, R7800 before 1.0.2.60, R8900 before 1.0.4.12, R9000 before 1.0.4.12, and XR500 before 2.3.2.40.
CVE-2020-35786	1 Netgear	2 R7800, R7800 Firmware	2024-11-21	4.5 Medium
NETGEAR R7800 devices before 1.0.2.74 are affected by a buffer overflow by an authenticated user.
CVE-2020-35785	1 Netgear	2 Dgn2200, Dgn2200 Firmware	2024-11-21	8.3 High
NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication (aka PSV-2020-0363, PSV-2020-0364, and PSV-2020-0365).
CVE-2020-35784	1 Netgear	8 Gs116e, Gs116e Firmware, Jgs516pe and 5 more	2024-11-21	6.2 Medium
Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, and GS116Ev2 before 2.6.0.48.
CVE-2020-35783	1 Netgear	8 Gs116e, Gs116e Firmware, Jgs516pe and 5 more	2024-11-21	6.5 Medium
Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, GS116Ev2 before 2.6.0.48, JGS524Ev2 before 2.6.0.48, and JGS524PE before 2.6.0.48. The NSDP protocol version allows unauthenticated remote attackers to obtain all the switch configuration parameters by sending the corresponding read requests.
CVE-2020-35782	1 Netgear	8 Gs116e, Gs116e Firmware, Jgs516pe and 5 more	2024-11-21	8.1 High
Certain NETGEAR devices are affected by lack of access control at the function level. This affects JGS516PE before 2.6.0.48, JGS524Ev2 before 2.6.0.48, JGS524PE before 2.6.0.48, and GS116Ev2 before 2.6.0.48. The TFTP firmware update mechanism does not properly implement firmware validations, allowing remote attackers to write arbitrary data to internal memory.
CVE-2020-35781	1 Netgear	2 Nms300, Nms300 Firmware	2024-11-21	8.3 High
NETGEAR NMS300 devices before 1.6.0.27 are affected by denial of service.
CVE-2020-35780	1 Netgear	2 Nms300, Nms300 Firmware	2024-11-21	7.1 High
NETGEAR NMS300 devices before 1.6.0.27 are affected by denial of service.
CVE-2020-35779	1 Netgear	2 Nms300, Nms300 Firmware	2024-11-21	7.5 High
NETGEAR NMS300 devices before 1.6.0.27 are affected by denial of service.
CVE-2020-35778	1 Netgear	4 Gs716t, Gs716t Firmware, Gs724t and 1 more	2024-11-21	4.3 Medium
Certain NETGEAR devices are affected by CSRF. This affects GS716Tv3 before 6.3.1.36 and GS724Tv4 before 6.3.1.36.
CVE-2020-35777	1 Netgear	2 Dgn2200v1, Dgn2200v1 Firmware	2024-11-21	8.4 High
NETGEAR DGN2200v1 devices before v1.0.0.58 are affected by command injection.
CVE-2020-35233	1 Netgear	4 Gs116e, Gs116e Firmware, Jgs516pe and 1 more	2024-11-21	6.5 Medium
The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a denial of service attack.

« first previous Page 25 of 62. next last »