netgear

1,342 tracked vulnerabilities.

CVE-2023-40480 HIGH
NETGEAR RAX30 Firmware < 1.0.9.92 - Unauthenticated Remote Code Execution via DHCP Server
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-40479 HIGH
NETGEAR RAX30 Firmware < 1.0.9.92 - Unauthenticated Remote Code Execution via UPnP Command Injection
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-40478 MEDIUM
NETGEAR RAX30 Firmware < 1.0.10.94 - Stack-based Buffer Overflow in Telnet CLI passwd
May 03, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-38102 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.20 - Privilege Escalation via createUser Authorization Bypass
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-38101 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.20 - Remote Code Execution via SettingConfigController
May 03, 2024
CVSS 8.8
EPSS 0.02
CVE-2023-38100 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.20 - SQL Injection via clearAlertByIds Function
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-38099 HIGH
NETGEAR ProSAFE NMS < 1.7.0.20 - SQLi & RCE via getNodesByTopologyMapSearch
May 03, 2024
CVSS 8.8
EPSS 0.53
CVE-2023-38098 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.20 - Remote Code Execution via UpLoadServlet Unrestricted File Upload
May 03, 2024
CVSS 8.8
EPSS 0.10
CVE-2023-38097 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.20 - Remote Code Execution via BkreProcessThread Exposed Function
May 03, 2024
CVSS 8.8
EPSS 0.02
CVE-2023-38096 CRITICAL
NETGEAR ProSafe Network Management System 300 Arbitrary File Upload
May 03, 2024
CVSS 9.8
EPSS 0.83
CVE-2023-38095 HIGH
NETGEAR ProSAFE Network Management System < 1.7.0.20 - Remote Code Execution via MFileUploadController
May 03, 2024
CVSS 8.8
EPSS 0.62
CVE-2023-35722 HIGH
NETGEAR RAX30 Firmware < 1.0.11.96_2_hotfix - Unauthenticated Remote Code Execution via UPnP Port Mapping Request
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-35721 HIGH
NETGEAR RAX50 Firmware < 1.0.15.128 - Unauthenticated Remote Code Execution via Improper Certificate Validation
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-34285 HIGH
NETGEAR RAX30 Firmware < 1.0.11.96_2_hotfix - Unauthenticated Stack-based Buffer Overflow via telnetd Service
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-34284 MEDIUM
NETGEAR RAX30 Firmware < 1.0.10.94 - Unauthenticated Authentication Bypass via Hard-coded Credentials
May 03, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-34283 MEDIUM
NETGEAR RAX30 Firmware < 1.0.10.94 - Unauthenticated Information Disclosure via USB Share Symbolic Link
May 03, 2024
CVSS 4.6
EPSS 0.01
CVE-2023-27370 MEDIUM
NETGEAR RAX30 Firmware < 1.0.10.94 - Cleartext Storage of Sensitive Information in Device Configuration
May 03, 2024
CVSS 5.7
EPSS 0.00
CVE-2023-27369 HIGH
NETGEAR RAX30 Firmware < 1.0.10.94 - Unauthenticated Stack-based Buffer Overflow in soap_serverd
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-27368 HIGH
NETGEAR RAX30 Firmware < 1.0.10.94 - Unauthenticated Stack-based Buffer Overflow in SOAP Server
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-27367 HIGH
NETGEAR RAX30 Firmware < 1.0.10.94 - Authenticated OS Command Injection via libcms_cli Module
May 03, 2024
CVSS 8.0
EPSS 0.01
CVE-2023-27361 HIGH
NETGEAR RAX30 Firmware < 1.0.9.92 - Authenticated Stack-based Buffer Overflow via JSON Parsing
May 03, 2024
CVSS 8.0
EPSS 0.01
CVE-2023-27360 HIGH
NETGEAR RAX30 Firmware < 1.0.10.94 - Unauthenticated Remote Code Execution via lighttpd Misconfiguration
May 03, 2024
CVSS 8.8
EPSS 0.00
CVE-2023-27358 HIGH
NETGEAR RAX30, RAXE300, RAX40, RAX35, RAX38 Firmware < 1.0.10.94 - Unauthenticated SQL Injection via SOAP Request
May 03, 2024
CVSS 8.8
EPSS 0.01
CVE-2023-27357 MEDIUM
NETGEAR RAX30 Firmware < 1.0.10.94 - Unauthenticated Information Disclosure via SOAP Request Handling
May 03, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-27356 HIGH
NETGEAR RAX30 and RAXE300 Firmware < 1.0.10.94 - Authenticated Remote Code Execution via logCtrl Action
May 03, 2024
CVSS 8.0
EPSS 0.01