CVE-2023-27358

< 1.0.10.94

NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers

8.8HIGH

CVE-2022-27647

< 1.0.10.110

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.

8.0HIGH

CVE-2022-27645

< 1.0.10.110

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 routers

8.8HIGH

CVE-2022-27642

< 1.0.10.110

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 1.0.4.1

8.8HIGH

CVE-2022-48196

< 1.0.2.60

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects RAX40 before 1.0.2.60, RAX3

7.4HIGH

CVE-2021-45672

< 1.0.3.62

Certain NETGEAR devices are affected by Stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0

4.2MEDIUM

CVE-2021-45604

< 1.0.3.96

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects CBR750 before 3.2.18.

4.5MEDIUM

CVE-2021-45549

< 1.0.3.96

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects LAX20 before 1.1.6.28, MK62 befor

8.4HIGH

CVE-2021-45493

< 1.0.4.102

Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RAX35 before 1.0.4.102, RAX38 befor

7.6HIGH

CVE-2021-41449

< 1.0.4.102

A path traversal attack in web interfaces of Netgear RAX35, RAX38, and RAX40 routers before v1.0.4.102, allows a remote unauthenti

7.1HIGH

CVE-2021-38537

< 1.0.3.62

Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0

4.2MEDIUM

CVE-2021-38536

< 1.0.3.62

Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0

4.3MEDIUM

CVE-2021-38535

< 1.0.3.62

Certain NETGEAR devices are affected by stored XSS. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0

4.3MEDIUM

CVE-2021-38533

< 1.0.3.64

NETGEAR RAX40 devices before 1.0.3.64 are affected by stored XSS.

5.4MEDIUM

CVE-2021-38526

< 1.0.3.94

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects RAX35 before 1.0.3.94, RAX3

4.3MEDIUM

CVE-2020-35800

< 1.0.3.80

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 before 1.2.0.72, AC2400

9.4CRITICAL

CVE-2020-26898

< 1.0.3.80

NETGEAR RAX40 devices before 1.0.3.80 are affected by incorrect configuration of security settings.

9.6CRITICAL

CVE-2019-20647

< 1.0.3.64

NETGEAR RAX40 devices before 1.0.3.64 are affected by denial of service.

5.7MEDIUM

CVE-2019-20646

< 1.0.3.64

NETGEAR RAX40 devices before 1.0.3.64 are affected by disclosure of administrative credentials.

9.8CRITICAL

CVE-2019-20645

< 1.0.3.62

NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS.

4.8MEDIUM

CVE-2019-20644

< 1.0.3.62

NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS.

4.8MEDIUM

CVE-2019-20643

< 1.0.3.64

NETGEAR RAX40 devices before 1.0.3.64 are affected by disclosure of sensitive information.

7.5HIGH

CVE-2019-20642

< 1.0.3.64

NETGEAR RAX40 devices before 1.0.3.64 are affected by authentication bypass.

8.0HIGH

CVE-2019-20641

< 1.0.3.64

NETGEAR RAX40 devices before 1.0.3.64 are affected by lack of access control at the function level.

8.8HIGH