CVE-2023-36187
published 2023-09-01CVE-2023-36187: Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | cbr40_firmware | < 2.5.0.24 | 2.5.0.24 |
| netgear | lax20_firmware | < 1.1.6.34 | 1.1.6.34 |
| netgear | mk62_firmware | < 1.1.6.122 | 1.1.6.122 |
| netgear | mr60_firmware | < 1.1.6.122 | 1.1.6.122 |
| netgear | ms60_firmware | < 1.1.6.122 | 1.1.6.122 |
| netgear | r6400_firmware | < 1.0.1.70 | 1.0.1.70 |
| netgear | r6400v2_firmware | < 1.0.4.118 | 1.0.4.118 |
| netgear | r6700v3_firmware | < 1.0.4.118 | 1.0.4.118 |
| netgear | r7000_firmware | < 1.0.11.130 | 1.0.11.130 |
| netgear | r7000p_firmware | < 1.3.3.148 | 1.3.3.148 |
| netgear | rax200_firmware | < 1.0.4.120 | 1.0.4.120 |
| netgear | rax75_firmware | < 1.0.4.120 | 1.0.4.120 |
| netgear | rax80_firmware | < 1.0.4.120 | 1.0.4.120 |
| netgear | rbw30_firmware | < 2.6.2.6 | 2.6.2.6 |
| netgear | rs400_firmware | < 1.5.1.86 | 1.5.1.86 |