Netgear R6700 Firmware vulnerabilities
172 known vulnerabilities affecting netgear/r6700_firmware.
Total CVEs
172
CISA KEV
1
actively exploited
Public exploits
4
Exploited in wild
1
Severity breakdown
CRITICAL11HIGH104MEDIUM56LOW1
Vulnerabilities
Page 6 of 9
CVE-2017-18750HIGHCVSS 8.8fixed in 1.1.0.422020-04-23
CVE-2017-18750 [HIGH] CWE-787 CVE-2017-18750: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.1.00.24, R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 before 1.1.0.42.
nvd
CVE-2017-18744HIGHCVSS 8.8fixed in 1.0.1.222020-04-23
CVE-2017-18744 [HIGH] CWE-120 CVE-2017-18744: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects R6250 before 1.0.4.12, R6300v2 before 1.0.4.12, R6700 before 1.0.1.22, R6900 before 1.0.1.22, R7000 before 1.0.9.4, R7900 before 1.0.1.12, R8000 before 1.0.3.24, and R8500 before 1.0.2.74.
nvd
CVE-2017-18735HIGHCVSS 8.8fixed in 1.2.0.42020-04-23
CVE-2017-18735 [HIGH] CWE-74 CVE-2017-18735: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JR6150 before 1.0.1.10, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4, and R6900v2 before 1.2.0.4.
nvd
CVE-2018-21135HIGHCVSS 7.2fixed in 1.0.1.482020-04-23
CVE-2018-21135 [HIGH] CWE-787 CVE-2018-21135: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R6700 before 1.0.1.48, R7500 before 1.0.0.124, R7800 before 1.0.2.58, R8900 before 1.0.4.2, R9000 before 1.0.4.2, WNDR3700v4 before 1.0.2.102, WNDR4300v1 before 1.0.2.104, WNDR4300v2 before 1.0.0.56, WNDR4500v3 before 1.0.0.56, and WNR2000v5-R2
nvd
CVE-2017-18742HIGHCVSS 8.8fixed in 1.0.1.162020-04-23
CVE-2017-18742 [HIGH] CWE-352 CVE-2017-18742: Certain NETGEAR devices are affected by CSRF. This affects JR6150 before 1.0.1.10, R6050 before 1.0.
Certain NETGEAR devices are affected by CSRF. This affects JR6150 before 1.0.1.10, R6050 before 1.0.1.10, R6250 before 1.0.4.12, R6300v2 before 1.0.4.8, R6700 before 1.0.1.16, R6900 before 1.0.1.16, R7300DST before 1.0.0.54, R7900 before 1.0.1.12, R8000 before 1.0.3.32, and R8500 before 1.0.2.74.
nvd
CVE-2017-18745MEDIUMCVSS 6.1fixed in 1.0.1.222020-04-23
CVE-2017-18745 [MEDIUM] CWE-79 CVE-2017-18745: Certain NETGEAR devices are affected by stored XSS. This affects R6400 before 1.0.1.14, R6700 before
Certain NETGEAR devices are affected by stored XSS. This affects R6400 before 1.0.1.14, R6700 before 1.0.1.22, R6900 before 1.0.1.22, R7000 before 1.0.9.4, R7100LG before 1.0.0.32, R7300DST before 1.0.0.56, R7900 before 1.0.1.12, R8000 before 1.0.3.24, and R8500 before 1.0.2.74.
nvd
CVE-2017-18741MEDIUMCVSS 6.5fixed in 1.0.1.202020-04-23
CVE-2017-18741 [MEDIUM] CVE-2017-18741: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6250 before 1.0.4.8, R6300v2 before 1.0.4.8, R6700 before 1.0.1.20, R7000 before 1.0.7.10, R7000P before 1.0.0.58, R6900P before 1.0.0.58, R7100LG before 1.0.0.32, R7900 before 1.0.1.14, R8000 before 1.0.3.22, and R8500 before 1.0.2.94.
nvd
CVE-2017-18758HIGHCVSS 8.0fixed in 1.1.0.422020-04-22
CVE-2017-18758 [HIGH] CWE-787 CVE-2017-18758: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 before 1.1.0.42.
nvd
CVE-2017-18772HIGHCVSS 8.8fixed in 1.0.1.262020-04-22
CVE-2017-18772 [HIGH] CWE-287 CVE-2017-18772: Certain NETGEAR devices are affected by authentication bypass. This affects EX3700 before 1.0.0.64,
Certain NETGEAR devices are affected by authentication bypass. This affects EX3700 before 1.0.0.64, EX3800 before 1.0.0.64, EX6120 before 1.0.0.32, EX6130 before 1.0.0.16, R6300v2 before 1.0.4.12, R6700 before 1.0.1.26, R6900 before 1.0.1.22, R7000 before 1.0.9.6, R7300DST before 1.0.0.52, R7900 before 1.0.1.12, R8000 before 1.0.3.24, R8500 before 1.0.
nvd
CVE-2017-18756HIGHCVSS 8.8fixed in 1.0.1.362020-04-22
CVE-2017-18756 [HIGH] CVE-2017-18756: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6220 before 1.0.0.32, D6400 before 1.0.0.66, D8500 before 1.0.3.35, DGN2200Bv4 before 1.0.0.94, DGN2200v4 before 1.0.0.94, R6250 before 1.0.4.14, R6300v2 before 1.0.4.18, R6400 before 1.01.32, R6400v2 before 1.0.2.44, R6700 before 1.0.1.36, R6900 before 1.0.1.3
nvd
CVE-2017-18782HIGHCVSS 8.8fixed in 1.2.0.122020-04-22
CVE-2017-18782 [HIGH] CWE-352 CVE-2017-18782: Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.
Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JR6150 before 1.0.1.12, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R680
nvd
CVE-2017-18777HIGHCVSS 7.8fixed in 1.0.1.202020-04-22
CVE-2017-18777 [HIGH] CWE-522 CVE-2017-18777: Certain NETGEAR devices are affected by administrative password disclosure. This affects D6220 befor
Certain NETGEAR devices are affected by administrative password disclosure. This affects D6220 before V1.0.0.28, D6400 before V1.0.0.60, D8500 before V1.0.3.29, DGN2200v4 before 1.0.0.82, DGN2200Bv4 before 1.0.0.82, R6300v2 before 1.0.4.8, R6400 before 1.0.1.20, R6700 before 1.0.1.20, R6900 before 1.0.1.20, R7000 before 1.0.7.10, R7100LG before V1.0.0
nvd
CVE-2017-18779HIGHCVSS 7.8fixed in 1.2.0.122020-04-22
CVE-2017-18779 [HIGH] CWE-120 CVE-2017-18779: Certain NETGEAR devices are affected by a buffer overflow. This affects D6200 before 1.1.00.24, D700
Certain NETGEAR devices are affected by a buffer overflow. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1
nvd
CVE-2017-18755HIGHCVSS 8.8fixed in 1.0.1.222020-04-22
CVE-2017-18755 [HIGH] CWE-352 CVE-2017-18755: Certain NETGEAR devices are affected by CSRF. This affects R6300v2 before 1.0.4.8, R6400v2 before 1.
Certain NETGEAR devices are affected by CSRF. This affects R6300v2 before 1.0.4.8, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6900 before 1.0.1.22, R7000P before 1.0.0.86, R6900P before 1.0.0.56, R7300 before 1.0.0.54, R8300 before 1.0.2.106, R8500 before 1.0.2.106, DGN2200v4 before 1.0.0.86, DGND2200Bv4 before 1.0.0.86, R6050 before 1.0.0.86, J
nvd
CVE-2017-18781HIGHCVSS 8.8fixed in 1.2.0.122020-04-22
CVE-2017-18781 [HIGH] CWE-352 CVE-2017-18781: Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.
Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, JR6150 before 1.0.1.12, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R680
nvd
CVE-2017-18764HIGHCVSS 8.8fixed in 1.2.0.42020-04-22
CVE-2017-18764 [HIGH] CWE-74 CVE-2017-18764: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D6100 before 1.0.0.55, D7000 before 1.0.1.50, D7800 before 1.0.1.28, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6100 before 1.0.1.14, R6120 before 1.0.0.30, R6220 befo
nvd
CVE-2017-18784MEDIUMCVSS 6.1fixed in 1.2.0.122020-04-22
CVE-2017-18784 [MEDIUM] CWE-79 CVE-2017-18784: Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1
Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R6800 before 1.2.0.12, R6900
nvd
CVE-2017-18788MEDIUMCVSS 6.7fixed in 1.0.1.362020-04-22
CVE-2017-18788 [MEDIUM] CWE-74 CVE-2017-18788: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D36
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D6200 before 1.1.00.24, D6220 before 1.0.0.32, D6400 before 1.0.0.66, D7000 before 1.0.1.52, D7000v2 before 1.0.0.44, D7800 before 1.0.1.30, D8500 before 1.0.3.35, DGN2200v4 before 1.0.0
nvd
CVE-2017-18765MEDIUMCVSS 6.5fixed in 1.0.1.202020-04-22
CVE-2017-18765 [MEDIUM] CVE-2017-18765: Certain NETGEAR devices are affected by denial of service. This affects R6300v2 before 1.0.4.8, R640
Certain NETGEAR devices are affected by denial of service. This affects R6300v2 before 1.0.4.8, R6400 before 1.0.1.22, R6400v2 before 1.0.2.32, R6700 before 1.0.1.20, R6900 before 1.0.1.20, WNR3500Lv2 before 1.2.0.44, and WNR2000v2 before 1.2.0.8.
nvd
CVE-2017-18778MEDIUMCVSS 5.5fixed in 1.2.0.22020-04-22
CVE-2017-18778 [MEDIUM] CWE-20 CVE-2017-18778: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6220 before 1.0.0.28, D6400 before 1.0.0.60, D7000 before 1.0.1.52, D7000v2 before 1.0.0.38, D7800 before 1.0.1.24, D8500 before 1.0.3.29, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.14, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6050 befo
nvd