Netgear Nighthawk X10-R9000 Firmware vulnerabilities

4 known vulnerabilities affecting netgear/nighthawk_x10-r9000_firmware.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2019-12510CRITICALCVSS 9.1fixed in 1.0.4.262020-02-24
CVE-2019-12510 [CRITICAL] CWE-345 CVE-2019-12510: In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may bypass all authentication checks on In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may bypass all authentication checks on the device's "NETGEAR Genie" SOAP API ("/soap/server_sa") by supplying a malicious X-Forwarded-For header of the device's LAN IP address (192.168.1.1) in every request. As a result, an attacker may modify almost all of the device's settings and vie
nvd
CVE-2019-12511CRITICALCVSS 9.8fixed in 1.0.4.262020-02-24
CVE-2019-12511 [CRITICAL] CVE-2019-12511: In NETGEAR Nighthawk X10-R9000 prior to 1.0.4.26, an attacker may execute arbitrary system commands In NETGEAR Nighthawk X10-R9000 prior to 1.0.4.26, an attacker may execute arbitrary system commands as root by sending a specially-crafted MAC address to the "NETGEAR Genie" SOAP endpoint at AdvancedQoS:GetCurrentBandwidthByMAC. Although this requires QoS being enabled, advanced QoS being enabled, and a valid authentication JWT, additional vulnerabilities
nvd
CVE-2019-12513MEDIUMCVSS 6.1fixed in 1.0.4.242020-02-24
CVE-2019-12513 [MEDIUM] CWE-79 CVE-2019-12513: In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a mal In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, by sending a DHCP discover request containing a malicious hostname field, an attacker may execute stored XSS attacks against this device. When the malicious DHCP request is received, the device will generate a log entry containing the malicious hostname. This log entry may then be viewed at Advanced se
nvd
CVE-2019-12512MEDIUMCVSS 6.1fixed in 1.0.4.242020-02-24
CVE-2019-12512 [MEDIUM] CWE-79 CVE-2019-12512: In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execute stored XSS attacks against In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execute stored XSS attacks against this device by supplying a malicious X-Forwarded-For header while performing an incorrect login attempt. The value supplied by this header will be inserted into administrative logs, found at Advanced settings->Administration->Logs, and may trigger when
nvd