Skip to main content
CVE-2021-45503 HIGH This Week

Certain NETGEAR devices are affected by authentication bypass. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-45502 HIGH This Week

Certain NETGEAR devices are affected by authentication bypass. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-45500 HIGH PATCH This Week

Certain NETGEAR devices are affected by authentication bypass. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Authentication Bypass R7000P Firmware R8000 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-45499 HIGH PATCH This Week

Certain NETGEAR devices are affected by authentication bypass. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Authentication Bypass R6900P Firmware R7000P Firmware R7900P Firmware +4
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-37584 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +9
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-37583 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +6
NVD
CVSS 3.1
8.8
EPSS
1.4%
CVE-2021-37571 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +6
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-37569 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +6
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-37568 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +6
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-37566 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +8
NVD
CVSS 3.1
8.8
EPSS
1.3%
CVE-2021-37563 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +9
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-37561 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +9
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-37560 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +9
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-35055 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Memory Corruption Mt7603E Firmware +9
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-45584 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.4), this vulnerability is low attack complexity. No vendor patch available.

Netgear Command Injection Rbk752 Firmware Rbr750 Firmware Rbs750 Firmware +3
NVD
CVSS 3.1
8.4
EPSS
0.6%
CVE-2021-45540 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.4), this vulnerability is low attack complexity.

Netgear Command Injection R7900P Firmware R7960P Firmware R8000 Firmware +10
NVD
CVSS 3.1
8.4
EPSS
0.6%
CVE-2021-44078 HIGH PATCH This Week

An issue was discovered in split_region in uc.c in Unicorn Engine before 2.0.0-rc5. Rated high severity (CVSS 8.1), this vulnerability is no authentication required.

RCE Unicorn Engine
NVD GitHub
CVSS 3.1
8.1
EPSS
0.5%
CVE-2021-45661 HIGH PATCH This Week

Certain NETGEAR devices are affected by server-side injection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Netgear Code Injection Rbk40 Firmware Rbr40 Firmware Rbs40 Firmware +7
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2021-45660 HIGH PATCH This Week

Certain NETGEAR devices are affected by server-side injection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Netgear Code Injection Rbk40 Firmware Rbr40 Firmware Rbs40 Firmware +7
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2021-45659 HIGH PATCH This Week

Certain NETGEAR devices are affected by server-side injection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Netgear Code Injection Rbk40 Firmware Rbr40 Firmware Rbs40 Firmware +7
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2021-45657 HIGH PATCH This Week

Certain NETGEAR devices are affected by server-side injection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Netgear Code Injection D6200 Firmware D7000 Firmware R6020 Firmware +25
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2021-45656 HIGH PATCH This Week

Certain NETGEAR devices are affected by server-side injection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Netgear Code Injection D6200 Firmware D7000 Firmware R6020 Firmware +24
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2021-45602 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Netgear Command Injection D7800 Firmware Ex2700 Firmware Wn3000Rpv2 Firmware +15
NVD
CVSS 3.1
7.8
EPSS
0.7%
CVE-2021-45534 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Netgear Command Injection Ac2100 Firmware Ac2400 Firmware Ac2600 Firmware +14
NVD
CVSS 3.1
7.8
EPSS
1.1%
CVE-2021-45532 HIGH This Week

NETGEAR R8000 devices before 1.0.4.76 are affected by command injection by an authenticated user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Netgear Command Injection R8000 Firmware
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2021-45654 HIGH PATCH This Week

NETGEAR XR1000 devices before 1.0.0.58 are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure Xr1000 Firmware
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-45653 HIGH PATCH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure Rbk352 Firmware Rbr350 Firmware Rbs350 Firmware
NVD
CVSS 3.1
7.5
EPSS
1.4%
CVE-2021-45652 HIGH PATCH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure Rbk352 Firmware Rbr350 Firmware Rbs350 Firmware
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-45651 HIGH PATCH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure Rbk50 Firmware Rbr50 Firmware Rbs50 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2021-45650 HIGH PATCH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure R7000 Firmware R7900 Firmware R8000 Firmware +5
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-45648 HIGH PATCH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure Ex6100V2 Firmware Ex6150V2 Firmware Ex6250 Firmware +15
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2021-45647 HIGH PATCH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure Eax80 Firmware Ex7000 Firmware R6120 Firmware +31
NVD
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-45646 HIGH PATCH This Week

NETGEAR R7000 devices before 1.0.11.116 are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Netgear Information Disclosure R7000 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2021-45493 HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Rax35 Firmware Rax38 Firmware Rax40 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2021-41788 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-12-13 and other devices, mishandle attempts at Wi-Fi authentication flooding. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Mediatek Information Disclosure Mt7603E Firmware Mt7612 Firmware +6
NVD
CVSS 3.1
7.5
EPSS
2.0%
CVE-2021-37572 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Mediatek Authentication Bypass Mt7603E Firmware Mt7613 Firmware +5
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-37570 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +6
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2021-37567 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +6
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2021-37565 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +6
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2021-37564 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +6
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2021-37562 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +9
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2021-32469 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +9
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-32468 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +9
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-32467 HIGH This Week

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mediatek Netgear Information Disclosure Mt7603E Firmware +8
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-45679 HIGH This Week

Certain NETGEAR devices are affected by privilege escalation. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Privilege Escalation R6900P Firmware R7000 Firmware R7000P Firmware +1
NVD
CVSS 3.1
7.2
EPSS
1.0%
CVE-2021-45642 HIGH PATCH This Week

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Netgear Information Disclosure D7800 Firmware Ex6250 Firmware Ex7700 Firmware +26
NVD
CVSS 3.1
7.2
EPSS
0.9%
CVE-2021-45640 HIGH PATCH This Week

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Netgear Information Disclosure D3600 Firmware D6000 Firmware D6200 Firmware +48
NVD
CVSS 3.1
7.2
EPSS
0.6%
CVE-2021-45600 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Cbr750 Firmware Rbk852 Firmware Rbr850 Firmware +1
NVD
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-45552 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection D7800 Firmware R7500V2 Firmware R7800 Firmware +4
NVD
CVSS 3.1
7.2
EPSS
1.2%
CVE-2021-45529 HIGH PATCH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Netgear Cbr40 Firmware D7000V2 Firmware D8500 Firmware +7
NVD
CVSS 3.1
7.2
EPSS
0.5%
Prev Page 2 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy