Home/Product/netgear ex7000 firmware
Product

netgear ex7000 firmware

44 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2021-34983
< 1.0.1.106
NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerabili
6.5MEDIUM
 CVE-2021-34982
< 1.0.1.106
NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-
8.8HIGH
 CVE-2021-45647
< 1.0.1.104
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects EAX80 before 1.0.1.62, EX7000 before 1.0
6.5MEDIUM
 CVE-2021-45641
< 1.0.1.78
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.72, D6000 be
4.6MEDIUM
 CVE-2021-45640
< 1.0.1.78
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.72, D6000 be
3.9LOW
 CVE-2021-45639
< 1.0.1.104
Certain NETGEAR devices are affected by reflected XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.32, EAX80 before 1.0
5.2MEDIUM
 CVE-2021-45621
< 1.0.1.104
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR7
9.6CRITICAL
 CVE-2021-45533
< 1.0.1.106
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects EX6120 before 1.0.0.66, EX6130 be
8.4HIGH
 CVE-2021-45527
< 1.0.1.94
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.68, D6400 befo
9.6CRITICAL
 CVE-2021-45525
< 1.0.1.80
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX7000 before 1.0.1.80, R6400 bef
6.1MEDIUM
 CVE-2021-45512
< 1.0.1.90
Certain NETGEAR devices are affected by weak cryptography. This affects D7000v2 before 1.0.0.62, D8500 before 1.0.3.50, EX3700 bef
8.6HIGH
 CVE-2021-38525
< 1.0.1.78
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D3600 before 1.0.0.76
6.8MEDIUM
 CVE-2021-38514
< 1.0.0.66
Certain NETGEAR devices are affected by authentication bypass. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6100 be
2.4LOW
 CVE-2021-27239
< 1.0.1.94
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400 and R670
8.8HIGH
 CVE-2020-35800
< 1.0.1.90
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 before 1.2.0.72, AC2400
9.4CRITICAL
 CVE-2020-35796
< 1.0.1.90
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects CBR40 before 2.5.0.10, D622
8.8HIGH
 CVE-2020-35787
< 1.0.1.78
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D3600 before 1.0.0.76, D6000 befo
8.0HIGH
 CVE-2020-26918
< 1.0.1.78
Certain NETGEAR devices are affected by stored XSS. This affects EX7000 before 1.0.1.78, R6250 before 1.0.4.34, R6400 before 1.0.1
4.1MEDIUM
 CVE-2020-26917
< 1.0.1.78
Certain NETGEAR devices are affected by stored XSS. This affects EX7000 before 1.0.1.78, R6250 before 1.0.4.34, R6400 before 1.0.1
4.1MEDIUM
 CVE-2018-21156
< 1.0.0.64
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.38, D6400 befo
7.2HIGH
 CVE-2018-21093
< 1.0.0.66
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D8500 before 1.
8.8HIGH
 CVE-2018-21231
< 1.0.0.56
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D1500 before 1.0.0.27, D500 bef
5.4MEDIUM
 CVE-2018-21230
< 1.0.0.56
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D1500 before 1.0.0.27, D500 bef
5.4MEDIUM
 CVE-2017-18700
< 1.0.0.60
Certain NETGEAR devices are affected by stored XSS. This affects D6400 before 1.0.0.60, D7000 before 1.0.1.50, D8500 before 1.0.3.
6.1MEDIUM
 CVE-2017-18715
< 1.0.0.60
Certain NETGEAR devices are affected by reflected XSS. This affects EX3700 before 1.0.0.66, EX3800 before 1.0.0.66, EX6100 before
6.1MEDIUM
 CVE-2018-21163
< 1.0.0.64
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects DGN2200Bv4 before 1.0
7.2HIGH
 CVE-2018-21162
< 1.0.0.64
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D6400 before 1.0.0.78, EX62
9.8CRITICAL
 CVE-2018-21134
< 1.0.0.66
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects R6700 before 1.
9.8CRITICAL
 CVE-2017-18747
< 1.0.0.50
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects EX3700 before 1.0.0.64, EX3800
6.5MEDIUM
 CVE-2017-18746
< 1.0.0.50
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects EX3700 before 1.0.0.64, EX3800
6.5MEDIUM
 CVE-2017-18769
< 1.0.0.56
Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This affects D6220 before 1.0.0.40, D6400 b
4.6MEDIUM
 CVE-2019-20756
< 1.0.0.64
Certain NETGEAR devices are affected by reflected XSS. This affects EX7000 before 1.0.0.64, EX6200 before 1.0.3.86, EX6150 before
6.1MEDIUM
 CVE-2019-20754
< 1.0.0.66
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects DGN2200 before 1.0.0.58, DGN2200B
6.8MEDIUM
 CVE-2019-20737
< 1.0.0.66
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.
6.7MEDIUM
 CVE-2019-20734
< 1.0.0.66
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.40, D850
8.8HIGH
 CVE-2019-20733
< 1.0.0.66
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.
6.7MEDIUM
 CVE-2019-20732
< 1.0.0.66
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.40, D7000v2 be
6.7MEDIUM
 CVE-2019-20731
< 1.0.0.66
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.40, D6400 befo
6.7MEDIUM
 CVE-2019-20700
< 1.0.0.66
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.
6.7MEDIUM
 CVE-2019-20692
< 1.0.0.66
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.
6.7MEDIUM
 CVE-2019-20691
< 1.0.0.66
Certain NETGEAR devices are affected by CSRF. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, EX3700 before 1.0.0.70, E
8.8HIGH
 CVE-2016-10864
<= 1.0.0.42_1.0.94
NETGEAR EX7000 V1.0.0.42_1.0.94 devices allow XSS via the SSID.
5.2MEDIUM
 CVE-2016-1561
all versions
ExaGrid appliances with firmware before 4.8 P26 have a default SSH public key in the authorized_keys file for root, which allows r
7.5HIGH
 CVE-2016-1560
all versions
ExaGrid appliances with firmware before 4.8 P26 have a default password of (1) inflection for the root shell account and (2) suppo
9.8CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin