netgear

1,342 tracked vulnerabilities.

CVE-2024-36788 MEDIUM
Netgear WNR614/JNR1010V2 N300-V1.1.0.54_1.0.1 - Sensitive Info Exposure via Missing HTTPOnly Cookie Flag
Jun 07, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-36787 HIGH
Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 - Auth Bypass
Jun 07, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-36795 MEDIUM
Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 - Info Disclosure
Jun 06, 2024
CVSS 4.0
EPSS 0.00
CVE-2024-5505 HIGH
NETGEAR ProSAFE NMS < 1.7.0.37 - Authenticated RCE via Path Traversal
Jun 06, 2024
CVSS 8.8
EPSS 0.47
CVE-2024-5247 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.37 - Authenticated Remote Code Execution via UpLoadServlet
May 23, 2024
CVSS 8.8
EPSS 0.27
CVE-2024-5246 HIGH
NETGEAR ProSAFE Network Management Software 300 - Authenticated Remote Code Execution via Apache Tomcat
May 23, 2024
CVSS 8.8
EPSS 0.31
CVE-2024-5245 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.37 - Local Privilege Escalation via Default MySQL Credentials
May 23, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-4235 LOW
Netgear DG834Gv5 1.6.01.34 - Info Disclosure
Apr 26, 2024
CVSS 2.7
EPSS 0.01
CVE-2024-30572 HIGH
Netgear R6850 1.1.0.88 - OS Command Injection via ntp_server Parameter
Apr 03, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-30571 HIGH
Netgear R6850 v1.1.0.88 - Unauthenticated Exposure of Sensitive Information in BRS_top.html
Apr 03, 2024
CVSS 7.5
EPSS 0.14
CVE-2024-30570 MEDIUM NUCLEI
Netgear R6850 v1.1.0.88 - Unauthenticated Sensitive Information Exposure via debuginfo.htm
Apr 03, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-30569 HIGH NUCLEI
Netgear R6850 v1.1.0.88 - Unauthenticated Exposure of Sensitive Information via currentsetting.htm
Apr 03, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-30568 CRITICAL NUCLEI
Netgear R6850 1.1.0.88 - OS Command Injection via c4-IPAddr Parameter
Apr 03, 2024
CVSS 9.8
EPSS 0.47
CVE-2024-28340 HIGH
Netgear CBR40, CBK40, CBK43 2.5.0.28 - Unauthenticated Sensitive Information Exposure via currentsetting.htm
Mar 12, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-28339 MEDIUM
Netgear CBR40, CBK40, CBK43 2.5.0.28 - Unauthenticated Sensitive Information Exposure via debuginfo.htm
Mar 12, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-1431 MEDIUM
Netgear R7000 Firmware 1.0.11.136_10.2.120 - Information Disclosure via Web Management Interface
Feb 11, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-1430 MEDIUM
Netgear R7000 1.0.11.136_10.2.120 - Information Disclosure via Web Management Interface
Feb 11, 2024
CVSS 4.3
EPSS 0.01
CVE-2023-51635 HIGH
NETGEAR RAX30 Firmware < 1.0.12.100_hotfix - Unauthenticated Stack-based Buffer Overflow in fing_dil Service
Nov 22, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-51634 HIGH
NETGEAR RAX30 Firmware < 1.0.12.100_hotfix - Unauthenticated Remote Code Execution via Improper Certificate Validation
Nov 22, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-50231 CRITICAL
NETGEAR ProSAFE Network Management System < 1.7.0.31 - Stored Cross-Site Scripting via saveNodeLabel
May 03, 2024
CVSS 9.6
EPSS 0.53
CVE-2023-44450 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.31 - Authenticated SQL Injection via getNodesByTopologyMapSearch
May 03, 2024
CVSS 8.8
EPSS 0.54
CVE-2023-44449 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.31 - Authenticated SQL Injection via clearAlertByIds
May 03, 2024
CVSS 8.8
EPSS 0.53
CVE-2023-44445 HIGH
NETGEAR CAX30 Firmware < 2.2.1.12 - Unauthenticated Stack-based Buffer Overflow in SSO Binary
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-41183 HIGH
NETGEAR Orbi 760 Firmware < 6.3.8.5 - Unauthenticated Authentication Bypass via SOAP API
May 03, 2024
CVSS 8.8
EPSS 0.15
CVE-2023-41182 HIGH
NETGEAR ProSAFE Network Management System - RCE
May 03, 2024
CVSS 8.8
EPSS 0.59