Netgear R8000 Firmware vulnerabilities
117 known vulnerabilities affecting netgear/r8000_firmware.
Total CVEs
117
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL20HIGH51MEDIUM45LOW1
Vulnerabilities
Page 6 of 6
CVE-2019-20700MEDIUMCVSS 6.7fixed in 1.0.4.122020-04-16
CVE-2019-20700 [MEDIUM] CWE-787 CVE-2019-20700: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.44, D6400 before 1.0.0.78, D7000v2 before 1.0.0.51, D8500 before 1.0.3.42, DGN2200v4 before 1.0.0.110, DGND2200Bv4 before 1.0.0.110, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 befor
nvd
CVE-2019-20719MEDIUMCVSS 6.8fixed in 1.0.4.282020-04-16
CVE-2019-20719 [MEDIUM] CWE-120 CVE-2019-20719: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D62
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.48, D6400 before 1.0.0.82, D7000v2 before 1.0.0.52, D8500 before 1.0.3.43, R6250 before 1.0.4.34, R6400 before 1.0.1.44, R6400v2 before 1.0.2.62, R7000P before 1.4.1.30, R7100LG before 1.0.0.48, R7300DST before 1.0.0.68, R7900 before 1
nvd
CVE-2019-20732MEDIUMCVSS 6.7fixed in 1.0.4.122020-04-16
CVE-2019-20732 [MEDIUM] CWE-77 CVE-2019-20732: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D62
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.40, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGND2200Bv4 before 1.0.0.102, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130
nvd
CVE-2019-20728MEDIUMCVSS 6.7fixed in 1.0.4.122020-04-16
CVE-2019-20728 [MEDIUM] CWE-120 CVE-2019-20728: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D64
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6400 before 1.0.0.74, D7000v2 before 1.0.0.74, D7800 before 1.0.1.34, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGND2200Bv4 before 1.0.0.102, DM200 before 1.0.0.52, JNDR3000 before 1.0.0.22, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 b
nvd
CVE-2019-20762MEDIUMCVSS 6.8fixed in 1.0.4.282020-04-16
CVE-2019-20762 [MEDIUM] CWE-120 CVE-2019-20762: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D85
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D8500 before 1.0.3.43, R8500 before 1.0.2.128, R8300 before 1.0.2.128, R8000 before 1.0.4.28, R7300DST before 1.0.0.68, R7100LG before 1.0.0.48, R6900P before 1.3.1.44, R7900P before 1.4.1.30, R8000P before 1.4.1.30, R7000P before 1.3.1.44, R7000 before
nvd
CVE-2019-20733MEDIUMCVSS 6.7fixed in 1.0.4.122020-04-16
CVE-2019-20733 [MEDIUM] CWE-787 CVE-2019-20733: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.44, D6400 before 1.0.0.78, D7000v2 before 1.0.0.51, D8500 before 1.0.3.42, DGN2200v4 before 1.0.0.110, DGND2200Bv4 before 1.0.0.110, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 befor
nvd
CVE-2019-20729MEDIUMCVSS 4.4fixed in 1.0.4.182020-04-16
CVE-2019-20729 [MEDIUM] CVE-2019-20729: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects J
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JNDR3000 before 1.0.0.22, R6250 before 1.0.4.26, R6300v2 before 1.0.4.22, R6400 before 1.0.1.36, R6400v2 before 1.0.2.52, R6700 before 1.0.1.44, R6900 before 1.0.1.44, R7000 before 1.0.9.28, R6900P before 1.3.1.26, R7000P before 1.3.1.26, R7300DST before 1.0.0
nvd
CVE-2019-20692MEDIUMCVSS 6.7fixed in 1.0.4.122020-04-16
CVE-2019-20692 [MEDIUM] CWE-787 CVE-2019-20692: Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.44, D6400 before 1.0.0.78, D7000v2 before 1.0.0.51, D8500 before 1.0.3.42, DGN2200v4 before 1.0.0.110, DGND2200Bv4 before 1.0.0.109, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 befor
nvd
CVE-2019-20731MEDIUMCVSS 6.7fixed in 1.0.4.122020-04-16
CVE-2019-20731 [MEDIUM] CWE-120 CVE-2019-20731: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D62
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.40, D6400 before 1.0.0.74, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before
nvd
CVE-2019-20712MEDIUMCVSS 6.8fixed in 1.0.4.282020-04-16
CVE-2019-20712 [MEDIUM] CWE-120 CVE-2019-20712: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D62
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000v2 before 1.0.0.53, D8500 before 1.0.3.44, DGN2200v4 before 1.0.0.110, DGND2200Bv4 before 1.0.0.109, R6250 before 1.0.4.34, R6300v2 before 1.0.4.32, R6400 before 1.0.1.46, R6400v2 before 1.0.2.62, R6700
nvd
CVE-2019-20713MEDIUMCVSS 6.8fixed in 1.0.4.282020-04-16
CVE-2019-20713 [MEDIUM] CWE-787 CVE-2019-20713: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D8500 before 1.0.3.44, R6250 before 1.0.4.34, R6300v2 before 1.0.4.32, R6400 before 1.0.1.46, R6700 before 1.0.2.6, R6900 before 1.0.2.4, R6900P before 1.3.1.64, R7000 before 1.0.9.42, R7000P before 1.3.1.64, R7100LG before 1.0.0.50, R7300DST
nvd
CVE-2019-20755MEDIUMCVSS 6.8fixed in 1.0.4.182020-04-16
CVE-2019-20755 [MEDIUM] CWE-787 CVE-2019-20755: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6220 before 1.0.0.46, D6400 before 1.0.0.80, D7000v2 before 1.0.0.51, D8500 before 1.0.3.42, DGN2200v1 before 1.0.0.58, DGN2200B before 1.0.0.58, JNDR3000 before 1.0.0.24, RBW30 before 2.1.4.16, R6250 before 1.0.4.26, R6300v2 before 1.0.4.28
nvd
CVE-2020-11770HIGHCVSS 8.8fixed in 1.0.4.282020-04-15
CVE-2020-11770 [HIGH] CWE-77 CVE-2020-11770: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D62
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000v2 before 1.0.0.53, D8500 before 1.0.3.44, R6220 before 1.1.0.80, R6250 before 1.0.4.34, R6260 before 1.1.0.64, R6400 before 1.0.1.46, R6400v2 before 1.0.2.66, R6700 before 1.0.2.6, R6700v2 before 1.2.0.36,
nvd
CVE-2019-20680HIGHCVSS 8.0fixed in 1.0.4.462020-04-15
CVE-2019-20680 [HIGH] CWE-77 CVE-2019-20680: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D70
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7000v2 before 1.0.0.53, R6220 before 1.1.0.80, R6260 before 1.1.0.64, R6700 before 1.0.2.6, R6700v2 before 1.2.0.36, R6800 before 1.2.0.36, R6900 before 1.0.2.4, R6900P before 1.3.1.64, R6900v2 before 1.2.0.36, R7000 before 1.0.9.60, R7000P before 1.3.1.64
nvd
CVE-2019-5016CRITICALCVSS 9.1v1.0.4.28_10.1.542019-06-17
CVE-2019-5016 [CRITICAL] CWE-200 CVE-2019-5016: An exploitable arbitrary memory read vulnerability exists in the KCodes NetUSB.ko kernel module whic
An exploitable arbitrary memory read vulnerability exists in the KCodes NetUSB.ko kernel module which enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. A specially crafted index value can cause an invalid memory read, resulting in a denial of service or remote infor
nvd
CVE-2019-5017MEDIUMCVSS 5.3v1.0.4.28_10.1.542019-06-17
CVE-2019-5017 [MEDIUM] CWE-200 CVE-2019-5017: An exploitable information disclosure vulnerability exists in the KCodes NetUSB.ko kernel module tha
An exploitable information disclosure vulnerability exists in the KCodes NetUSB.ko kernel module that enables the ReadySHARE Printer functionality of at least two NETGEAR Nighthawk Routers and potentially several other vendors/products. An unauthenticated, remote attacker can craft and send a packet containing an opcode that will trigger the kernel mo
nvd
CVE-2016-6277HIGHCVSS 8.8KEVPoC≤ 1.0.3.262016-12-14
CVE-2016-6277 [HIGH] CWE-352 CVE-2016-6277: NETGEAR R6250 before 1.0.4.6.Beta, R6400 before 1.0.1.18.Beta, R6700 before 1.0.1.14.Beta, R6900, R7
NETGEAR R6250 before 1.0.4.6.Beta, R6400 before 1.0.1.18.Beta, R6700 before 1.0.1.14.Beta, R6900, R7000 before 1.0.7.6.Beta, R7100LG before 1.0.0.28.Beta, R7300DST before 1.0.0.46.Beta, R7900 before 1.0.1.8.Beta, R8000 before 1.0.3.26.Beta, D6220, D6400, D7000, and possibly other routers allow remote attackers to execute arbitrary commands via shell met
nvd
← Previous6 / 6