Netgear D3600 Firmware vulnerabilities

65 known vulnerabilities affecting netgear/d3600_firmware.

Total CVEs
65
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH40MEDIUM21LOW1

Vulnerabilities

Page 2 of 4
CVE-2018-21218HIGHCVSS 8.8fixed in 1.0.0.672020-04-28
CVE-2018-21218 [HIGH] CWE-120 CVE-2018-21218: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v
nvd
CVE-2018-21222HIGHCVSS 8.8fixed in 1.0.0.672020-04-28
CVE-2018-21222 [HIGH] CWE-120 CVE-2018-21222: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.50, WNDR
nvd
CVE-2018-21214HIGHCVSS 8.8fixed in 1.0.0.672020-04-28
CVE-2018-21214 [HIGH] CWE-120 CVE-2018-21214: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, EX2700 before 1.0.1.28, R6100 before 1.0.1.20, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WN2000RPTv3 before 1.0.1.20, WN3000RPv3 before 1.0.2.50, and WN3100RPv2 before 1.0.0.56.
nvd
CVE-2016-11059HIGHCVSS 7.5fixed in 2017-01-062020-04-28
CVE-2016-11059 [HIGH] CWE-200 CVE-2016-11059: Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6 Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before 2017-01-06, D500 before 2017-01-06, D1500 before 2017-01-06, D3600 before 2017-01-06, D6000 before 2017-01-06, D6100 before 2017-01-06, D6200 before 2017-01-06, D6200B before 2017-01-06, D6300B before 2017-01-06, D6300 before 2017-01-06, DGN1
nvd
CVE-2018-21211HIGHCVSS 8.8fixed in 1.0.0.672020-04-28
CVE-2018-21211 [HIGH] CWE-120 CVE-2018-21211: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D7800 before 1.0.1.30, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v
nvd
CVE-2018-21137CRITICALCVSS 9.8fixed in 1.0.0.762020-04-23
CVE-2018-21137 [CRITICAL] CWE-798 CVE-2018-21137: Certain NETGEAR devices are affected by a hardcoded password. This affects D3600 before 1.0.0.76 and Certain NETGEAR devices are affected by a hardcoded password. This affects D3600 before 1.0.0.76 and D6000 before 1.0.0.76.
nvd
CVE-2018-21138HIGHCVSS 8.8fixed in 1.0.0.762020-04-23
CVE-2018-21138 [HIGH] CVE-2018-21138: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.76 and D6000 before 1.0.0.76.
nvd
CVE-2018-21136MEDIUMCVSS 4.6fixed in 1.0.0.762020-04-23
CVE-2018-21136 [MEDIUM] CWE-200 CVE-2018-21136: Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D3600 befo Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D3600 before 1.0.0.76 and D6000 before 1.0.0.76.
nvd
CVE-2017-18740MEDIUMCVSS 6.3fixed in 1.0.0.612020-04-23
CVE-2017-18740 [MEDIUM] CVE-2017-18740: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.61, D6000 before 1.0.0.61, D6100 before 1.0.0.55, D7800 before 1.0.1.28, R6100 before 1.0.1.16, R7500 before 1.0.0.112, R7500v2 before 1.0.3.20, R7800 before 1.0.2.36, R9000 before 1.0.2.40, WNDR3700v4 before 1.0.2.88, WNDR4300 before 1.0.2.
nvd
CVE-2017-18762HIGHCVSS 8.8fixed in 1.0.0.682020-04-22
CVE-2017-18762 [HIGH] CWE-74 CVE-2017-18762: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D3600 before 1.0.0.68, D6000 before 1.0.0.68, D6100 before 1.0.0.57, R6100 before 1.0.1.16, R6900P before 1.2.0.22, R7000 before 1.0.9.10, R7000P before 1.2.0.22, R7100LG before 1.0.0.40, WNDR3700v4 before 1.0.2.88, WNDR4300v1 before 1.0.2.90, WNDR430
nvd
CVE-2017-18788MEDIUMCVSS 6.7fixed in 1.0.0.672020-04-22
CVE-2017-18788 [MEDIUM] CWE-74 CVE-2017-18788: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D36 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D6200 before 1.1.00.24, D6220 before 1.0.0.32, D6400 before 1.0.0.66, D7000 before 1.0.1.52, D7000v2 before 1.0.0.44, D7800 before 1.0.1.30, D8500 before 1.0.3.35, DGN2200v4 before 1.0.0
nvd
CVE-2017-18785MEDIUMCVSS 4.8fixed in 1.0.0.672020-04-22
CVE-2017-18785 [MEDIUM] CWE-79 CVE-2017-18785: Certain NETGEAR devices are affected by XSS. This affects D3600 before 1.0.0.67, D6000 before 1.0.0. Certain NETGEAR devices are affected by XSS. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D6200 before 1.1.00.24, D6220 before 1.0.0.32, D6400 before 1.0.0.66, D7000 before 1.0.1.52, D7000v2 before 1.0.0.44, D7800 before 1.0.1.30, D8500 before 1.0.3.35, DGN2200v4 before 1.0.0.96, DGN2200Bv4 before 1.0.0.96, EX2700
nvd
CVE-2018-21111MEDIUMCVSS 6.8fixed in 1.0.0.752020-04-22
CVE-2018-21111 [MEDIUM] CWE-787 CVE-2018-21111: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D6100 before 1.0.0.60, R7800 before 1.0.2.52, R8900 before 1.0.4.2, R9000 before 1.0.4.2, WNDR3700v4 before 1.0.2.102, WNDR4300 before 1.0.2.104, WNDR4300v2 before 1.0.0.58, WNDR4500v3 before 1.0.
nvd
CVE-2018-21140MEDIUMCVSS 6.5fixed in 1.0.0.762020-04-21
CVE-2018-21140 [MEDIUM] CWE-20 CVE-2018-21140: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.76 and D6000 before 1.0.0.76.
nvd
CVE-2019-20730CRITICALCVSS 9.8fixed in 1.0.0.682020-04-16
CVE-2019-20730 [CRITICAL] CWE-89 CVE-2019-20730: Certain NETGEAR devices are affected by SQL injection. This affects D3600 before 1.0.0.68, D6000 bef Certain NETGEAR devices are affected by SQL injection. This affects D3600 before 1.0.0.68, D6000 before 1.0.0.68, D6200 before 1.1.00.28, D6220 before 1.0.0.40, D6400 before 1.0.0.74, D7000 before 1.0.1.60, D7000v2 before 1.0.0.74, D7800 before 1.0.1.34, D8500 before 1.0.3.39, DC112A before 1.0.0.40, EX8000 before 1.0.0.118, JR6150 before 1.0.1.18,
nvd
CVE-2019-20703HIGHCVSS 8.0fixed in 1.0.0.762020-04-16
CVE-2019-20703 [HIGH] CWE-77 CVE-2019-20703: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D36 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32.
nvd
CVE-2019-20711HIGHCVSS 8.0fixed in 1.0.0.762020-04-16
CVE-2019-20711 [HIGH] CWE-77 CVE-2019-20711: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D36 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32.
nvd
CVE-2019-20702HIGHCVSS 8.0fixed in 1.0.0.762020-04-16
CVE-2019-20702 [HIGH] CWE-77 CVE-2019-20702: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D36 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32.
nvd
CVE-2019-20701HIGHCVSS 8.0fixed in 1.0.0.762020-04-16
CVE-2019-20701 [HIGH] CWE-77 CVE-2019-20701: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D36 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32.
nvd
CVE-2019-20709HIGHCVSS 8.0fixed in 1.0.0.762020-04-16
CVE-2019-20709 [HIGH] CWE-77 CVE-2019-20709: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D36 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32.
nvd
← Previous2 / 4Next →