Skip to main content
CVE-2021-4168 HIGH POC PATCH This Week

showdoc is vulnerable to Cross-Site Request Forgery (CSRF). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF Showdoc
NVD GitHub
CVSS 3.1
8.8
EPSS
0.6%
CVE-2021-45720 HIGH POC PATCH This Week

An issue was discovered in the lru crate before 0.7.1 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Lru
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45719 HIGH POC PATCH This Week

An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Rusqlite
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45718 HIGH POC PATCH This Week

An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Rusqlite
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45717 HIGH POC PATCH This Week

An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Rusqlite
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45716 HIGH POC PATCH This Week

An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Rusqlite
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45715 HIGH POC PATCH This Week

An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Rusqlite
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45714 HIGH POC PATCH This Week

An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Rusqlite
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45713 HIGH POC PATCH This Week

An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free Memory Corruption Information Disclosure Rusqlite
NVD
CVSS 3.1
7.5
EPSS
1.2%
CVE-2021-45712 HIGH POC PATCH This Week

An issue was discovered in the rust-embed crate before 6.3.0 for Rust. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Rust Embed
NVD
CVSS 3.1
7.5
EPSS
1.6%
CVE-2021-45641 HIGH PATCH This Week

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Information Disclosure D3600 Firmware D6000 Firmware D6200 Firmware +46
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2021-45636 HIGH PATCH This Week

NETGEAR D7000 devices before 1.0.1.82 are affected by a stack-based buffer overflow by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Netgear Memory Corruption D7000 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-45635 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-45634 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
1.1%
CVE-2021-45633 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-45632 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-45631 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbk752 Firmware +5
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-45629 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-45628 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbk752 Firmware +7
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-45626 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Rbk20 Firmware Rbr20 Firmware Rbs20 Firmware +7
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-45615 HIGH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware R7900P Firmware +10
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-45607 HIGH PATCH This Week

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Netgear Memory Corruption R6400V2 Firmware R6700V3 Firmware +6
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-45606 HIGH PATCH This Week

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Netgear Memory Corruption R6400 Firmware R7000 Firmware +13
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-45605 HIGH PATCH This Week

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Netgear Memory Corruption R6400 Firmware R7000 Firmware +6
NVD
CVSS 3.1
8.8
EPSS
0.6%
CVE-2021-45601 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbk852 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45599 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbr850 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45598 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbr850 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45597 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbr850 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45596 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45595 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Lbr20 Firmware Rbs50Y Firmware Rbr10 Firmware +11
NVD
CVSS 3.1
8.8
EPSS
1.6%
CVE-2021-45573 HIGH This Week

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Netgear Memory Corruption R6260 Firmware R6800 Firmware +6
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-45557 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Gc108P Firmware Gc108Pp Firmware Gs108Tv3 Firmware +17
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-45556 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Gs108Tv2 Firmware Gs110Tpp Firmware Gs110Tpv2 Firmware +11
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-45553 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection R7000 Firmware R6900P Firmware R7000P Firmware
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-45551 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection D6200 Firmware D7000 Firmware R6020 Firmware +15
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45548 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection D7800 Firmware Dm200 Firmware Ex2700 Firmware +25
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-45547 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection R7850 Firmware R7900P Firmware R7960P Firmware +11
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45546 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection R7850 Firmware R7900P Firmware R7960P Firmware +11
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45544 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection R7850 Firmware R7900P Firmware R7960P Firmware +8
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45541 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Rax200 Firmware Mr60 Firmware Rax45 Firmware +14
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45531 HIGH This Week

NETGEAR D6220 devices before 1.0.0.76 are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection D6220 Firmware
NVD
CVSS 3.1
8.8
EPSS
1.3%
CVE-2021-45530 HIGH PATCH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Netgear R7000 Firmware R7000P Firmware R7960P Firmware +9
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-45526 HIGH PATCH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Netgear Ex6000 Firmware Ex6120 Firmware Ex6130 Firmware +11
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2021-45525 HIGH PATCH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Netgear Ex7000 Firmware R6400 Firmware R6400V2 Firmware +12
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-45522 HIGH This Week

NETGEAR XR1000 devices before 1.0.0.58 are affected by a hardcoded password. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Xr1000 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-45520 HIGH PATCH This Week

Certain NETGEAR devices are affected by a hardcoded password. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. This Use of Hard-coded Credentials vulnerability could allow attackers to gain access using credentials embedded in source code.

Netgear Authentication Bypass Rbk352 Firmware Rbr350 Firmware Rbs350 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2021-45514 HIGH This Week

NETGEAR XR1000 devices before 1.0.0.58 are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Xr1000 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-45510 HIGH This Week

NETGEAR XR1000 devices before 1.0.0.58 are affected by authentication bypass. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Xr1000 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-45506 HIGH This Week

Certain NETGEAR devices are affected by authentication bypass. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2021-45505 HIGH This Week

Certain NETGEAR devices are affected by authentication bypass. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr750 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.5%
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy