Home/Product/netgear r6120 firmware
Product

netgear r6120 firmware

58 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2021-45675
< 1.0.0.76
Certain NETGEAR devices are affected by stored XSS. This affects R6120 before 1.0.0.76, R6260 before 1.1.0.78, R6850 before 1.1.0.
5.8MEDIUM
 CVE-2021-45672
< 1.0.0.76
Certain NETGEAR devices are affected by Stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0
4.2MEDIUM
 CVE-2021-45657
< 1.0.0.66
Certain NETGEAR devices are affected by server-side injection. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, R6020 b
7.1HIGH
 CVE-2021-45656
< 1.0.0.66
Certain NETGEAR devices are affected by server-side injection. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, R6020 b
7.1HIGH
 CVE-2021-45647
< 1.0.0.76
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects EAX80 before 1.0.1.62, EX7000 before 1.0
6.5MEDIUM
 CVE-2021-45551
< 1.0.0.66
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6200 before 1.1.00.40, D7000 bef
7.6HIGH
 CVE-2021-45501
< 1.0.0.80
Certain NETGEAR devices are affected by authentication bypass. This affects AC2400 before 1.1.0.84, AC2600 before 1.1.0.84, D7000
9.4CRITICAL
 CVE-2021-38537
< 1.0.0.66
Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0
4.2MEDIUM
 CVE-2021-38536
< 1.0.0.66
Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0
4.3MEDIUM
 CVE-2021-38535
< 1.0.0.76
Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0
4.3MEDIUM
 CVE-2021-38531
< 1.0.0.66
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6200 before 1.1.00.40, D7000 b
4.7MEDIUM
 CVE-2021-38525
< 1.0.0.46
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D3600 before 1.0.0.76
6.8MEDIUM
 CVE-2021-38516
< 1.0.0.44
Certain NETGEAR devices are affected by lack of access control at the function level. This affects D6220 before 1.0.0.48, D6400 be
10.0CRITICAL
 CVE-2021-38514
< 1.0.0.46
Certain NETGEAR devices are affected by authentication bypass. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6100 be
2.4LOW
 CVE-2021-29068
< 1.0.0.70
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R6700v3 before 1.0.4.98, R6400v2
9.9CRITICAL
 CVE-2020-27867
< 1.0.0.76
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080,
6.8MEDIUM
 CVE-2020-27866
< 1.0.0.76
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R
8.8HIGH
 CVE-2020-27873
< 1.0.0.76
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450
6.5MEDIUM
 CVE-2020-27872
< 1.0.0.76
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.62_
8.8HIGH
 CVE-2020-35842
< 1.0.0.66
Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JNR1010v2 before 1
6.9MEDIUM
 CVE-2020-35841
< 1.0.0.66
Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JNR1010v2 before 1
6.9MEDIUM
 CVE-2020-35840
< 1.0.0.66
Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JNR1010v2 before 1
6.9MEDIUM
 CVE-2020-35803
< 1.0.0.72
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D6200 before 1.1.00.40, D7000 before 1.0
4.4MEDIUM
 CVE-2020-35800
< 1.0.0.70
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 before 1.2.0.72, AC2400
9.4CRITICAL
 CVE-2020-35799
< 1.0.0.46
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.
8.8HIGH
 CVE-2020-35795
< 1.0.0.70
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects AC2100 before 1.2.0.72, AC2
9.8CRITICAL
 CVE-2020-35787
< 1.0.0.46
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D3600 before 1.0.0.76, D6000 befo
8.0HIGH
 CVE-2020-17409
< 1.0.0.70
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R6120,
6.5MEDIUM
 CVE-2020-26927
< 1.0.0.66
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 b
9.4CRITICAL
 CVE-2020-26916
< 1.0.0.66
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6200 before 1.1.00.38, D7000 b
5.4MEDIUM
 CVE-2020-26914
< 1.0.0.66
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6200 before 1.1.00.38, D7000 bef
6.7MEDIUM
 CVE-2020-26912
< 1.0.0.66
Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.38, D7000 before 1.0.1.78, JR6150 before 1.0.1.24,
7.5HIGH
 CVE-2020-26911
< 1.0.0.66
Certain NETGEAR devices are affected by lack of access control at the function level. This affects D6200 before 1.1.00.38, D7000 b
8.3HIGH
 CVE-2020-26908
< 1.0.0.66
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.36, D7000 before 1.0.1.74, PR2000
9.4CRITICAL
 CVE-2020-13245
>= v1.0.9.6_1.2.19 and <= v1.0.11.100_10.2.100
Certain NETGEAR devices are affected by Missing SSL Certificate Validation. This affects R7000 1.0.9.6_1.2.19 through 1.0.11.100_1
5.9MEDIUM
 CVE-2017-18730
< 1.0.0.36
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.
8.8HIGH
 CVE-2017-18729
< 1.0.0.36
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.
8.8HIGH
 CVE-2018-21139
< 1.0.0.42
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D1500 before 1.0.0.27, D500 before 1.0.0
7.5HIGH
 CVE-2017-18764
< 1.0.0.30
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D6100 before 1.0.0.55, D700
8.8HIGH
 CVE-2017-18763
< 1.0.0.30
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JNR1010v2 before 1.1.0.42, JR61
6.5MEDIUM
 CVE-2017-18784
< 1.0.0.36
Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44
6.1MEDIUM
 CVE-2017-18783
< 1.0.0.36
Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44
6.1MEDIUM
 CVE-2017-18782
< 1.0.0.36
Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JR6150 before 1.0.1.12,
8.8HIGH
 CVE-2017-18781
< 1.0.0.36
Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.4
8.8HIGH
 CVE-2017-18780
< 1.0.0.36
Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 b
5.5MEDIUM
 CVE-2017-18779
< 1.0.0.36
Certain NETGEAR devices are affected by a buffer overflow. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 b
7.8HIGH
 CVE-2019-20738
< 1.0.0.40
Certain NETGEAR devices are affected by stored XSS. This affects D6100 before 1.0.0.58, D7800 before 1.0.1.34, JNR1010v2 before 1.
5.4MEDIUM
 CVE-2019-20690
< 1.0.0.44
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.30, D7000 before 1.0.1.66, R6020 b
8.8HIGH
 CVE-2019-20686
< 1.0.0.48
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D6200 before 1.1.00.36, D70
8.8HIGH
 CVE-2019-20685
< 1.0.0.46
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.
8.8HIGH
 CVE-2019-20684
< 1.0.0.46
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.
8.8HIGH
 CVE-2019-20683
< 1.0.0.46
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.
8.8HIGH
 CVE-2019-20682
< 1.0.0.46
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.
8.8HIGH
 CVE-2019-20681
< 1.0.0.46
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.34, D7000 before 1.0.1.68, JR6150
8.8HIGH
 CVE-2019-20657
< 1.0.0.48
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6200 before 1.1.00.36, D7000 bef
8.0HIGH
 CVE-2019-20656
< 1.0.0.48
Certain NETGEAR devices are affected by a hardcoded password. This affects D6200 before 1.1.00.36, D7000 before 1.0.1.74, PR2000 b
8.8HIGH
 CVE-2020-11788
< 1.0.0.46
Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.34, D7000 before 1.0.1.68, PR2000
8.8HIGH
 CVE-2019-20640
< 1.0.0.46
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.
8.8HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin