Check CVE Id
Check CWE Id
NETGEAR EX7000 V126.96.36.199_1.0.94 devices allow XSS via the SSID.
(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))
CVSS Base Score
NETGEAR SRX5308 4.3.5-3 devices allow SQL Injection, as exploited in the wild in September 2019 to add a new user account.
An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon (hostapd) on the NETGEAR N300 (WNR2000v5 with Firmware Version V188.8.131.52) wireless router. A SOAP request sent in an invalid sequence to the <WFAWLANConfig:1#PutMes...
An exploitable denial-of-service vulnerability exists in the session handling functionality of the NETGEAR N300 (WNR2000v5 with Firmware Version V184.108.40.206) HTTP server. An HTTP request with an empty User-Agent string sent to a page requiring authenti...
An exploitable information disclosure vulnerability exists in the KCodes NetUSB.ko kernel module that enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. An unauthenti...
An exploitable arbitrary memory read vulnerability exists in the KCodes NetUSB.ko kernel module which enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. A specially c...
A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V220.127.116.11_7.0.50, and DGND3700, version DGND3700-V18.104.22.168_1.0.17, which can allow a remote attacker to access this page without any authentication. When proces...
There are few web pages associated with the genie app on the Netgear WNDR4500 running firmware version V22.214.171.124_1.0.6877. Genie app adds some capabilities over the Web GUI and can be accessed even when you are away from home. A remote attacker can a...
NETGEAR WNR2000v3 devices before 126.96.36.199, WNR2000v4 devices before 188.8.131.52, and WNR2000v5 devices before 184.108.40.206 allow authentication bypass and remote code execution via a buffer overflow that uses a parameter in the administration webapp. The NE...
Back to Top