Netgear R7800 Firmware vulnerabilities

244 known vulnerabilities affecting netgear/r7800_firmware.

Total CVEs
244
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL14HIGH55MEDIUM174LOW1

Vulnerabilities

Page 4 of 13
CVE-2020-35822MEDIUMCVSS 4.8fixed in 1.0.2.742020-12-30
CVE-2020-35822 [MEDIUM] CWE-79 CVE-2020-35822: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 befo Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.
nvd
CVE-2020-35816MEDIUMCVSS 4.8fixed in 1.0.2.742020-12-30
CVE-2020-35816 [MEDIUM] CWE-79 CVE-2020-35816: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 befo Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 be
nvd
CVE-2020-35792MEDIUMCVSS 6.8fixed in 1.0.2.682020-12-30
CVE-2020-35792 [MEDIUM] CWE-77 CVE-2020-35792: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R75 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7500v2 before 1.0.3.48, R8900 before 1.0.5.2, R9000 before 1.0.5.2, and R7800 before 1.0.2.68.
nvd
CVE-2020-35834MEDIUMCVSS 4.8fixed in 1.0.2.682020-12-30
CVE-2020-35834 [MEDIUM] CWE-79 CVE-2020-35834: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 befo Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.
nvd
CVE-2020-35791MEDIUMCVSS 6.7fixed in 1.0.2.682020-12-30
CVE-2020-35791 [MEDIUM] CWE-77 CVE-2020-35791: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R78 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7800 before 1.0.2.68, R8900 before 1.0.5.2, and R9000 before 1.0.5.2.
nvd
CVE-2020-35814MEDIUMCVSS 4.8fixed in 1.0.2.742020-12-30
CVE-2020-35814 [MEDIUM] CWE-79 CVE-2020-35814: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7800 before Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 before 2.3.5.30, RBR50 befo
nvd
CVE-2020-35830MEDIUMCVSS 4.8fixed in 1.0.2.742020-12-30
CVE-2020-35830 [MEDIUM] CWE-79 CVE-2020-35830: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 befo Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 be
nvd
CVE-2020-35811MEDIUMCVSS 4.8fixed in 1.0.2.682020-12-30
CVE-2020-35811 [MEDIUM] CWE-79 CVE-2020-35811: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 befo Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 be
nvd
CVE-2020-35808MEDIUMCVSS 4.8fixed in 1.0.2.522020-12-30
CVE-2020-35808 [MEDIUM] CWE-79 CVE-2020-35808: Certain NETGEAR devices are affected by stored XSS. This affects D6100 before 1.0.0.63, DM200 before Certain NETGEAR devices are affected by stored XSS. This affects D6100 before 1.0.0.63, DM200 before 1.0.0.61, R7800 before 1.0.2.52, R8900 before 1.0.4.12, R9000 before 1.0.4.12, WN3000RPv2 before 1.0.0.68, and WNR2000v5 before 1.0.0.66.
nvd
CVE-2020-35809MEDIUMCVSS 4.8fixed in 1.0.2.742020-12-30
CVE-2020-35809 [MEDIUM] CWE-79 CVE-2020-35809: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 befo Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.
nvd
CVE-2020-26915MEDIUMCVSS 4.8fixed in 1.0.2.682020-10-09
CVE-2020-26915 [MEDIUM] CWE-79 CVE-2020-26915: Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 befo Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.
nvd
CVE-2020-26913MEDIUMCVSS 6.8fixed in 1.0.2.602020-10-09
CVE-2020-26913 [MEDIUM] CWE-787 CVE-2020-26913: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.63, R7800 before 1.0.2.60, R8900 before 1.0.4.26, R9000 before 1.0.4.26, RBK20 before 2.3.0.28, RBR20 before 2.3.0.28, RBS20 before 2.3.0.28, RBK50 before 2.3.0.32, RBR50 before 2.3.0.32, RBS50 before 2.3.0.32, RBK40 before
nvd
CVE-2020-13245MEDIUMCVSS 5.9≥ v1.0.9.6_1.2.19, ≤ v1.0.11.100_10.2.1002020-05-28
CVE-2020-13245 [MEDIUM] CWE-295 CVE-2020-13245: Certain NETGEAR devices are affected by Missing SSL Certificate Validation. This affects R7000 1.0.9 Certain NETGEAR devices are affected by Missing SSL Certificate Validation. This affects R7000 1.0.9.6_1.2.19 through 1.0.11.100_10.2.10, and possibly R6120, R7800, R6220, R8000, R6350, R9000, R6400, RAX120, R6400v2, RBR20, R6800, XR300, R6850, XR500, and R7000P.
nvd
CVE-2017-18866MEDIUMCVSS 6.1fixed in 1.0.2.362020-05-05
CVE-2017-18866 [MEDIUM] CWE-79 CVE-2017-18866: Certain NETGEAR devices are affected by stored XSS. This affects R9000 before 1.0.2.40, R6100 before Certain NETGEAR devices are affected by stored XSS. This affects R9000 before 1.0.2.40, R6100 before 1.0.1.1, 6R7500 before 1.0.0.110, R7500v2 before 1.0.3.20, R7800 before 1.0.2.36, WNDR4300v2 before 1.0.0.48, and WNR2000v5 before 1.0.0.58.
nvd
CVE-2018-21204HIGHCVSS 8.8fixed in 1.0.2.402020-04-28
CVE-2018-21204 [HIGH] CWE-787 CVE-2018-21204: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.50, and WNDR4500v3
nvd
CVE-2018-21181HIGHCVSS 7.2fixed in 1.0.2.402020-04-28
CVE-2018-21181 [HIGH] CWE-787 CVE-2018-21181: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D7800 before 1.0.1.28, EX2700 before 1.0.1.32, EX6200v2 before 1.0.1.56, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.3.6, WN2000RPTv3 before 1.0.1.20, WN3000RPv3 before 1.0.2.52, WN3100RPv2 before 1.0.0.42, WNDR3700v4 befor
nvd
CVE-2018-21206HIGHCVSS 8.8fixed in 1.0.2.402020-04-28
CVE-2018-21206 [HIGH] CWE-787 CVE-2018-21206: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D7800 before 1.0.1.30, EX2700 before 1.0.1.28, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WN2000RPTv3 before 1.0.1.20, WN3000RPv3 before 1.0.2.50, WN3100RPv2 befor
nvd
CVE-2018-21212HIGHCVSS 8.8fixed in 1.0.2.402020-04-28
CVE-2018-21212 [HIGH] CWE-120 CVE-2018-21212: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D7800 before 1.0.1.30, EX2700 before 1.0.1.28, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WN2000RPTv3 befo
nvd
CVE-2018-21202HIGHCVSS 8.8fixed in 1.0.2.402020-04-28
CVE-2018-21202 [HIGH] CWE-787 CVE-2018-21202: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.54, and WNDR4500v3
nvd
CVE-2018-21210HIGHCVSS 8.8fixed in 1.0.2.402020-04-28
CVE-2018-21210 [HIGH] CWE-120 CVE-2018-21210: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D7800 before 1.0.1.30, EX2700 before 1.0.1.28, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WN2000RPTv3 before 1.0.1.20, WN3000RPv3
nvd
← Previous4 / 13Next →