Netgear R6800 Firmware vulnerabilities

96 known vulnerabilities affecting netgear/r6800_firmware.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL11HIGH60MEDIUM24LOW1

Vulnerabilities

Page 4 of 5

CVE-2018-21139HIGHCVSS 7.5fixed in 1.2.0.242020-04-23

CVE-2018-21139 [HIGH] CWE-200 CVE-2018-21139: Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D1500 befo Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D1500 before 1.0.0.27, D500 before 1.0.0.27, D6100 before 1.0.0.58, D6200 before 1.1.00.30, D6220 before 1.0.0.46, D6400 before 1.0.0.82, D7000 before 1.0.1.68, D7000v2 before 1.0.0.51, D7800 before 1.0.1.42, D8500 before 1.0.3.42, DC112A before 1.0.0.40, DGN2200

nvd

CVE-2017-18750HIGHCVSS 8.8fixed in 1.1.0.422020-04-23

CVE-2017-18750 [HIGH] CWE-787 CVE-2017-18750: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.1.00.24, R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 before 1.1.0.42.

nvd

CVE-2017-18735HIGHCVSS 8.8fixed in 1.2.0.42020-04-23

CVE-2017-18735 [HIGH] CWE-74 CVE-2017-18735: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JR6150 before 1.0.1.10, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4, and R6900v2 before 1.2.0.4.

nvd

CVE-2017-18758HIGHCVSS 8.0fixed in 1.1.0.422020-04-22

CVE-2017-18758 [HIGH] CWE-787 CVE-2017-18758: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 before 1.1.0.42.

nvd

CVE-2017-18782HIGHCVSS 8.8fixed in 1.2.0.122020-04-22

CVE-2017-18782 [HIGH] CWE-352 CVE-2017-18782: Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0. Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JR6150 before 1.0.1.12, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R680

nvd

CVE-2017-18779HIGHCVSS 7.8fixed in 1.2.0.122020-04-22

CVE-2017-18779 [HIGH] CWE-120 CVE-2017-18779: Certain NETGEAR devices are affected by a buffer overflow. This affects D6200 before 1.1.00.24, D700 Certain NETGEAR devices are affected by a buffer overflow. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1

nvd

CVE-2017-18781HIGHCVSS 8.8fixed in 1.2.0.122020-04-22

CVE-2017-18781 [HIGH] CWE-352 CVE-2017-18781: Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0. Certain NETGEAR devices are affected by CSRF. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, JR6150 before 1.0.1.12, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R680

nvd

CVE-2017-18764HIGHCVSS 8.8fixed in 1.2.0.42020-04-22

CVE-2017-18764 [HIGH] CWE-74 CVE-2017-18764: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D6100 before 1.0.0.55, D7000 before 1.0.1.50, D7800 before 1.0.1.28, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6100 before 1.0.1.14, R6120 before 1.0.0.30, R6220 befo

nvd

CVE-2017-18784MEDIUMCVSS 6.1fixed in 1.2.0.122020-04-22

CVE-2017-18784 [MEDIUM] CWE-79 CVE-2017-18784: Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1 Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R6800 before 1.2.0.12, R6900

nvd

CVE-2017-18778MEDIUMCVSS 5.5fixed in 1.2.0.22020-04-22

CVE-2017-18778 [MEDIUM] CWE-20 CVE-2017-18778: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6220 before 1.0.0.28, D6400 before 1.0.0.60, D7000 before 1.0.1.52, D7000v2 before 1.0.0.38, D7800 before 1.0.1.24, D8500 before 1.0.3.29, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.14, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6050 befo

nvd

CVE-2017-18785MEDIUMCVSS 4.8fixed in 1.2.0.122020-04-22

CVE-2017-18785 [MEDIUM] CWE-79 CVE-2017-18785: Certain NETGEAR devices are affected by XSS. This affects D3600 before 1.0.0.67, D6000 before 1.0.0. Certain NETGEAR devices are affected by XSS. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D6200 before 1.1.00.24, D6220 before 1.0.0.32, D6400 before 1.0.0.66, D7000 before 1.0.1.52, D7000v2 before 1.0.0.44, D7800 before 1.0.1.30, D8500 before 1.0.3.35, DGN2200v4 before 1.0.0.96, DGN2200Bv4 before 1.0.0.96, EX2700

nvd

CVE-2017-18769MEDIUMCVSS 4.6fixed in 1.0.1.102020-04-22

CVE-2017-18769 [MEDIUM] CWE-200 CVE-2017-18769: Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This affects Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This affects D6220 before 1.0.0.40, D6400 before 1.0.0.74, D7000 before 1.0.1.60, D7800 before 1.0.1.34, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.94, DGN2200Bv4 before 1.0.0.94, EX6200v2 before 1.0.1.50, EX7000 before 1.0.0.56, JR6150 before 1.0.1.18, R6050 be

nvd

CVE-2017-18780MEDIUMCVSS 5.5fixed in 1.2.0.122020-04-22

CVE-2017-18780 [MEDIUM] CVE-2017-18780: Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24, D700 Certain NETGEAR devices are affected by denial of service. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.1

nvd

CVE-2017-18783MEDIUMCVSS 6.1fixed in 1.2.0.122020-04-22

CVE-2017-18783 [MEDIUM] CWE-79 CVE-2017-18783: Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1 Certain NETGEAR devices are affected by XSS. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R680

nvd

CVE-2017-18763MEDIUMCVSS 6.5fixed in 1.2.0.42020-04-22

CVE-2017-18763 [MEDIUM] CWE-20 CVE-2017-18763: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects J Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JNR1010v2 before 1.1.0.42, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.42, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6120 before 1.0.0.30, R6220 before 1.1.0.50, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4, R6900v2 before 1.2.0.4, WNDR3700v5

nvd

CVE-2017-18800MEDIUMCVSS 6.1fixed in 1.1.0.422020-04-21

CVE-2017-18800 [MEDIUM] CWE-79 CVE-2017-18800: Certain NETGEAR devices are affected by reflected XSS. This affects R6700v2 before 1.1.0.42 and R680 Certain NETGEAR devices are affected by reflected XSS. This affects R6700v2 before 1.1.0.42 and R6800 before 1.1.0.42.

nvd

CVE-2017-18801MEDIUMCVSS 6.7fixed in 1.1.0.382020-04-21

CVE-2017-18801 [MEDIUM] CWE-74 CVE-2017-18801: Certain NETGEAR devices are affected by command injection. This affects R6220 before 1.1.0.50, R6700 Certain NETGEAR devices are affected by command injection. This affects R6220 before 1.1.0.50, R6700v2 before 1.1.0.38, R6800 before 1.1.0.38, WNDR3700v5 before 1.1.0.48, and D7000 before 1.0.1.50.

nvd

CVE-2017-18798MEDIUMCVSS 6.2fixed in 1.1.0.382020-04-21

CVE-2017-18798 [MEDIUM] CWE-20 CVE-2017-18798: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6700v2 before 1.1.0.38, R6800 before 1.1.0.38, D7000 before 1.0.1.50, and D1500 before 1.0.0.25.

nvd

CVE-2017-18844HIGHCVSS 7.8fixed in 1.1.0.382020-04-20

CVE-2017-18844 [HIGH] CWE-522 CVE-2017-18844: Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects R6700 Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects R6700v2 before 1.1.0.38, R6800 before 1.1.0.38, and D7000 before 1.0.1.50.

nvd

CVE-2017-18843HIGHCVSS 7.8fixed in 1.1.0.382020-04-20

CVE-2017-18843 [HIGH] CWE-522 CVE-2017-18843: Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects R6700 Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects R6700v2 before 1.1.0.38, R6800 before 1.1.0.38, and D7000 before 1.0.1.50.

nvd

← Previous4 / 5Next →