Skip to main content

Cbr40 Firmware

45 CVEs product

Monthly

CVE-2024-28340 HIGH POC This Week

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Netgear Cbk40 Firmware Cbk43 Firmware Cbr40 Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
0.6%
CVE-2024-28339 MEDIUM POC This Month

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any. Rated medium severity (CVSS 5.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Netgear Cbk40 Firmware Cbr40 Firmware Cbk43 Firmware
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-36187 CRITICAL Act Now

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Netgear Cbr40 Firmware Lax20 Firmware +13
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2021-45671 MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Rax200 Firmware Mr60 Firmware Rax20 Firmware +19
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2021-45670 MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Rax200 Firmware Mr60 Firmware Rax20 Firmware +27
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2021-45667 MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Cbr40 Firmware Eax20 Firmware Eax80 Firmware +25
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2021-45666 MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Eax80 Firmware Ex3700 Firmware Ex3800 Firmware +12
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2021-45639 MEDIUM This Month

Certain NETGEAR devices are affected by reflected XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear XSS Cbr40 Firmware Eax20 Firmware Eax80 Firmware +30
NVD
CVSS 3.1
6.1
EPSS
0.6%
CVE-2021-45631 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbk752 Firmware +5
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-45630 CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbk752 Firmware +5
NVD
CVSS 3.1
9.8
EPSS
1.7%
CVE-2021-45628 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbk752 Firmware +7
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-45622 CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Eax20 Firmware +37
NVD
CVSS 3.1
9.8
EPSS
2.4%
CVE-2021-45621 CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Eax20 Firmware +45
NVD
CVSS 3.1
9.8
EPSS
2.0%
CVE-2021-45620 CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Eax20 Firmware +39
NVD
CVSS 3.1
9.8
EPSS
2.0%
CVE-2021-45617 CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Eax20 Firmware Eax80 Firmware +30
NVD
CVSS 3.1
9.8
EPSS
2.1%
CVE-2021-45615 HIGH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware R7900P Firmware +10
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-45613 CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware D7000V2 Firmware +23
NVD
CVSS 3.1
9.8
EPSS
2.0%
CVE-2021-45612 CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Eax20 Firmware +36
NVD
CVSS 3.1
9.8
EPSS
2.5%
CVE-2021-45601 HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbk852 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45599 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbr850 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45598 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbr850 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45597 HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Cbr750 Firmware Rbr850 Firmware +2
NVD
CVSS 3.1
8.8
EPSS
1.5%
CVE-2021-45529 HIGH PATCH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Netgear Cbr40 Firmware D7000V2 Firmware D8500 Firmware +7
NVD
CVSS 3.1
7.2
EPSS
0.5%
CVE-2021-45509 CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-45508 CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware Cbr750 Firmware Rbk752 Firmware +4
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-45507 CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware Cbr750 Firmware Rbw30 Firmware +7
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2021-45504 CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware Cbr750 Firmware Rbr850 Firmware +2
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-38527 CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Ex6100 Firmware Ex6150 Firmware +31
NVD
CVSS 3.1
9.8
EPSS
1.7%
CVE-2021-38513 CRITICAL Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Rbk852 Firmware Rbr850 Firmware Rbs850 Firmware +8
NVD
CVSS 3.1
9.8
EPSS
1.8%
CVE-2021-29080 HIGH This Week

Certain NETGEAR devices are affected by password reset by an unauthenticated attacker. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Rbk852 Firmware Rbk853 Firmware Rbr854 Firmware +13
NVD
CVSS 3.1
8.1
EPSS
0.4%
CVE-2021-29068 HIGH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Netgear R6700 Firmware R6400 Firmware R7000 Firmware +77
NVD
CVSS 3.1
8.8
EPSS
1.1%
CVE-2020-35802 HIGH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbw30 Firmware Rax75 Firmware +11
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2020-35800 CRITICAL Act Now

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Ac2100 Firmware Ac2400 Firmware Ac2600 Firmware +124
NVD
CVSS 3.1
9.4
EPSS
1.9%
CVE-2020-35796 CRITICAL Act Now

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Netgear Cbr40 Firmware D6220 Firmware D6400 Firmware +66
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2020-35795 CRITICAL Act Now

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Netgear Ac2100 Firmware Ac2400 Firmware Ac2600 Firmware +74
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2020-26928 CRITICAL Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr40 Firmware Rbk752 Firmware Rbk852 Firmware +4
NVD
CVSS 3.1
9.6
EPSS
0.7%
CVE-2020-26926 CRITICAL Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr40 Firmware Rbk752 Firmware Rbk852 Firmware +4
NVD
CVSS 3.1
9.6
EPSS
0.5%
CVE-2020-26910 MEDIUM This Month

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
6.8
EPSS
1.0%
CVE-2020-26906 HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.6%
CVE-2020-26905 HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2020-26904 HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2020-26903 HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2020-26900 HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2020-26899 MEDIUM This Month

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2020-26897 HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware Rbk752 Firmware Rbr750 Firmware +4
NVD
CVSS 3.1
8.8
EPSS
0.6%
EPSS 1% CVSS 7.5
HIGH POC This Week

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Netgear Cbk40 Firmware +2
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC This Month

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any. Rated medium severity (CVSS 5.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Netgear Cbk40 Firmware +2
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL Act Now

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Netgear +15
NVD
EPSS 0% CVSS 4.8
MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Rax200 Firmware +21
NVD
EPSS 0% CVSS 4.8
MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Rax200 Firmware +29
NVD
EPSS 0% CVSS 4.8
MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Cbr40 Firmware +27
NVD
EPSS 0% CVSS 4.8
MEDIUM PATCH This Month

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

Netgear XSS Eax80 Firmware +14
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

Certain NETGEAR devices are affected by reflected XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear XSS Cbr40 Firmware +32
NVD
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware +7
NVD
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware +7
NVD
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity.

Netgear Command Injection Cbr40 Firmware +9
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +39
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +47
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +41
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +32
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +12
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +25
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +38
NVD
EPSS 2% CVSS 8.8
HIGH PATCH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Netgear Command Injection Cbr40 Firmware +4
NVD
EPSS 2% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +4
NVD
EPSS 2% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +4
NVD
EPSS 2% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +4
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Netgear Cbr40 Firmware +9
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware +6
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware +6
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware +9
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Netgear Authentication Bypass Cbr40 Firmware +4
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +33
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Rbk852 Firmware +10
NVD
EPSS 0% CVSS 8.1
HIGH This Week

Certain NETGEAR devices are affected by password reset by an unauthenticated attacker. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Rbk852 Firmware +15
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Netgear R6700 Firmware +79
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +13
NVD
EPSS 2% CVSS 9.4
CRITICAL Act Now

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Ac2100 Firmware +126
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Netgear Cbr40 Firmware +68
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Netgear Ac2100 Firmware +76
NVD
EPSS 1% CVSS 9.6
CRITICAL Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr40 Firmware +6
NVD
EPSS 1% CVSS 9.6
CRITICAL Act Now

Certain NETGEAR devices are affected by authentication bypass. Rated critical severity (CVSS 9.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Authentication Bypass Cbr40 Firmware +6
NVD
EPSS 1% CVSS 6.8
MEDIUM This Month

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

Netgear Command Injection Cbr40 Firmware +6
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +6
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +6
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +6
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +6
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +6
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Certain NETGEAR devices are affected by disclosure of sensitive information. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +6
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Certain NETGEAR devices are affected by disclosure of administrative credentials. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Netgear Information Disclosure Cbr40 Firmware +6
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy