CVE-2018-21226

< 1.1.0.48

Certain NETGEAR devices are affected by authentication bypass. This affects JNR1010v2 before 1.1.0.48, JWNR2010v5 before 1.1.0.48,

8.8HIGH

CVE-2016-11059

< 2017-01-06

Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before 2017-01-06, D500 be

7.5HIGH

CVE-2016-11057

< 2017-01-06

Certain NETGEAR devices are affected by mishandling of repeated URL calls. This affects JNR1010v2 before 2017-01-06, WNR614 before

7.5HIGH

CVE-2018-21209

< 1.1.0.46

Certain NETGEAR devices are affected by reflected XSS. This affects JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.10, JWNR2010v5

4.8MEDIUM

CVE-2018-21169

< 1.1.0.46

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D7000 before 2018-03-01, D7800

8.8HIGH

CVE-2018-21168

< 1.1.0.46

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D7000 before 1.0.1.52, D7800 before 1.0.

7.5HIGH

CVE-2018-21231

< 1.1.0.42

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D1500 before 1.0.0.27, D500 bef

5.4MEDIUM

CVE-2018-21230

< 1.1.0.42

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D1500 before 1.0.0.27, D500 bef

5.4MEDIUM

CVE-2017-18703

< 1.1.0.46

Certain NETGEAR devices are affected by CSRF. This affects D1500 before 1.0.0.25, D500 before 1.0.0.25, D6100 before 1.0.0.55, D70

8.8HIGH

CVE-2018-21139

< 1.1.0.54

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D1500 before 1.0.0.27, D500 before 1.0.0

7.5HIGH

CVE-2017-18737

< 1.1.0.44

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JNR1010v2 before 1.1.0.44,

8.8HIGH

CVE-2017-18734

< 1.1.0.44

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JNR1010v2 before 1.1.0.44,

8.8HIGH

CVE-2017-18749

< 1.1.0.44

Certain NETGEAR devices are affected by CSRF. This affects JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.

8.8HIGH

CVE-2017-18764

< 1.1.0.44

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D6100 before 1.0.0.55, D700

8.8HIGH

CVE-2017-18763

< 1.1.0.42

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JNR1010v2 before 1.1.0.42, JR61

6.5MEDIUM

CVE-2017-18787

< 1.1.0.44

Certain NETGEAR devices are affected by command injection. This affects D6200 before 1.1.00.24, JNR1010v2 before 1.1.0.44, JR6150

7.8HIGH

CVE-2017-18786

< 1.1.0.44

Certain NETGEAR devices are affected by command injection. This affects D6200 before 1.1.00.24, JNR1010v2 before 1.1.0.44, JR6150

7.8HIGH

CVE-2017-18785

< 1.1.0.44

Certain NETGEAR devices are affected by XSS. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D62

4.8MEDIUM

CVE-2017-18784

< 1.1.0.44

Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44

6.1MEDIUM

CVE-2017-18783

< 1.1.0.44

Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44

6.1MEDIUM

CVE-2017-18782

< 1.1.0.44

Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JR6150 before 1.0.1.12,

8.8HIGH

CVE-2017-18781

< 1.1.0.44

Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.4

8.8HIGH

CVE-2017-18780

< 1.1.0.44

Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 b

5.5MEDIUM

CVE-2017-18779

< 1.1.0.44

Certain NETGEAR devices are affected by a buffer overflow. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 b

7.8HIGH

CVE-2017-18778

< 1.1.0.44

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6220 before 1.0.0.28, D6400 be

5.5MEDIUM

CVE-2017-18776

< 1.1.0.40

Certain NETGEAR devices are affected by authentication bypass. This affects D6100 before V1.0.0.55, D7000 before V1.0.1.50, D7800

8.4HIGH

CVE-2017-18788

< 1.1.0.44

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.67, D6000 befo

6.7MEDIUM

CVE-2017-18791

< 1.1.0.40

Certain NETGEAR devices are affected by CSRF. This affects R6050/JR6150 before 1.0.1.7, PR2000 before 1.0.0.17, R6220 before 1.1.0

8.8HIGH

CVE-2019-20738

< 1.1.0.50

Certain NETGEAR devices are affected by stored XSS. This affects D6100 before 1.0.0.58, D7800 before 1.0.1.34, JNR1010v2 before 1.

5.4MEDIUM

CVE-2019-20489

all versions

An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. The web management interface (setup.cgi) has an authentication bypa

9.8CRITICAL

CVE-2019-20488

all versions

An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple actions within the web management interface (setup.cgi) ar

9.8CRITICAL

CVE-2019-20487

all versions

An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple actions within the WNR1000V4 web management console are vu

8.8HIGH

CVE-2019-20486

all versions

An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple pages (setup.cgi and adv_index.htm) within the web managem

6.1MEDIUM

CVE-2013-3317

< 1.0.2.60

Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass via the NtgrBak key.

9.8CRITICAL

CVE-2013-3316

< 1.0.2.60

Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass due to the server skipping checks for URLs conta

9.8CRITICAL

CVE-2019-17372

all versions

Certain NETGEAR devices allow remote attackers to disable all authentication requirements by visiting genieDisableLanChanged.cgi.

8.1HIGH