Known Vulnerabilities for products from Netgear

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Netgear".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Additional devices specifications by Netgear can be found at device.report : Netgear

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-49694 json 7.8 - HIGH 2023-11-29 2023-12-05
CVE-2023-49693 json 9.8 - CRITICAL 2023-11-29 2023-12-05
CVE-2023-39550 json Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows ... 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-38928 json Netgear R7100LG 1.0.0.78 was discovered to contain a command injection vulnerability via the password parameter at usb_remote... 9.8 - CRITICAL 2023-08-07 2023-08-09
CVE-2023-38926 json Netgear EX6200 v1.0.3.94 was discovered to contain a buffer overflow via the wla_temp_ssid parameter at acosNvramConfig_set. 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-38925 json Netgear DC112A 1.0.0.64, EX6200 1.0.3.94 and R6300v2 1.0.4.8 were discovered to contain a buffer overflow via the http_passwd... 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-38924 json Netgear DGN3500 1.1.00.37 was discovered to contain a buffer overflow via the http_password parameter at setup.cgi. 6.5 - MEDIUM 2023-08-07 2023-08-09
CVE-2023-38922 json Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows ... 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-38921 json Netgear WG302v2 v5.2.9 and WAG302v2 v5.1.19 were discovered to contain multiple command injection vulnerabilities in the upgr... 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-38591 json Netgear DG834Gv5 1.6.01.34 was discovered to contain multiple buffer overflows via the wla_ssid and wla_temp_ssid parameters ... 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-38412 json Netgear R6900P v1.3.3.154 was discovered to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at ia_... 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-36499 json Netgear XR300 v1.0.3.78 was discovered to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at genie... 8.8 - HIGH 2023-08-07 2023-08-09
CVE-2023-36187 json Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute... 9.8 - CRITICAL 2023-09-01 2023-09-07
CVE-2023-34563 json netgear R6250 Firmware Version 1.0.4.48 is vulnerable to Buffer Overflow after authentication. 9.8 - CRITICAL 2023-06-20 2023-06-28
CVE-2023-33533 json Netgear D6220 with Firmware Version 1.0.0.80, D8500 with Firmware Version 1.0.3.60, R6700 with Firmware Version 1.0.2.26, and... 8.8 - HIGH 2023-06-06 2023-06-14
CVE-2023-33532 json There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an attacker gains w... 9.8 - CRITICAL 2023-06-06 2023-06-12
CVE-2023-30280 json Buffer Overflow vulnerability found in Netgear R6900 v.1.0.2.26, R6700v3 v.1.0.4.128, R6700 v.1.0.0.26 allows a remote attack... 9.8 - CRITICAL 2023-04-26 2023-05-08
CVE-2023-28338 json Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content-Type” of “multipartbou... 7.5 - HIGH 2023-03-15 2023-03-21
CVE-2023-28337 json When uploading a firmware image to a Netgear Nighthawk Wifi6 Router (RAX30), a hidden “forceFWUpdate” parameter may be pr... 8.8 - HIGH 2023-03-15 2023-03-21
CVE-2023-27853 json NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a format string vulnerability in a SOAP service that could allow ... 9.8 - CRITICAL 2023-03-10 2023-03-16
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Netgear

Type Vendor Product Version
HardwareNetgear6r7500-
Operating
System		Netgear6r7500 Firmware1.0.0.110
HardwareNetgearAc1200 R6220-
Operating
System		NetgearAc1200 R6220 Firmware1.1.0.86
Operating
System		NetgearAc1450 Firmware-
HardwareNetgearAc2100-
Operating
System		NetgearAc2100 Firmware1.2.0.62
HardwareNetgearAc2400-
Operating
System		NetgearAc2400 Firmware1.2.0.62
HardwareNetgearAc2600-
Operating
System		NetgearAc2600 Firmware1.2.0.62
HardwareNetgearC6300-
Operating
System		NetgearC6300 Firmware-
HardwareNetgearCg3100-
Operating
System		NetgearCg3100 Firmware-
HardwareNetgearCg3700b-
Operating
System		NetgearCg3700b Firmware2.02.03
HardwareNetgearCm400-
Operating
System		NetgearCm400 Firmware2017-01-11
HardwareNetgearCm600-
Results limited to 20 most recent known configurations