Netgear Wnr2000 Firmware vulnerabilities
92 known vulnerabilities affecting netgear/wnr2000_firmware.
Total CVEs
92
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH27MEDIUM62LOW1
Vulnerabilities
Page 1 of 5
CVE-2023-50089CRITICALCVSS 9.8v1.0.0.702023-12-15
CVE-2023-50089 [CRITICAL] CWE-77 CVE-2023-50089: A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for
A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication.
nvd
CVE-2022-46423HIGHCVSS 8.1≤ 1.2.3.72022-12-20
CVE-2022-46423 [HIGH] CWE-494 CVE-2022-46423: An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router. A
An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v1.2.3.7 and earlier.
nvd
CVE-2022-46422MEDIUMCVSS 4.8≤ 1.2.3.72022-12-20
CVE-2022-46422 [MEDIUM] CWE-345 CVE-2022-46422: An issue in Netgear WNR2000 v1 1.2.3.7 and earlier allows authenticated attackers to cause a Denial
An issue in Netgear WNR2000 v1 1.2.3.7 and earlier allows authenticated attackers to cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process.
nvd
CVE-2021-38514LOWCVSS 2.7fixed in 1.0.0.662021-08-11
CVE-2021-38514 [LOW] CVE-2021-38514: Certain NETGEAR devices are affected by authentication bypass. This affects D3600 before 1.0.0.72, D
Certain NETGEAR devices are affected by authentication bypass. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6100 before 1.0.0.63, D6200 before 1.1.00.34, D6220 before 1.0.0.48, D6400 before 1.0.0.86, D7000 before 1.0.1.70, D7000v2 before 1.0.0.52, D7800 before 1.0.1.56, D8500 before 1.0.3.44, DC112A before 1.0.0.42, DGN2200v4 before 1.0.0.108, D
nvd
CVE-2017-18866MEDIUMCVSS 6.1fixed in 1.0.0.582020-05-05
CVE-2017-18866 [MEDIUM] CWE-79 CVE-2017-18866: Certain NETGEAR devices are affected by stored XSS. This affects R9000 before 1.0.2.40, R6100 before
Certain NETGEAR devices are affected by stored XSS. This affects R9000 before 1.0.2.40, R6100 before 1.0.1.1, 6R7500 before 1.0.0.110, R7500v2 before 1.0.3.20, R7800 before 1.0.2.36, WNDR4300v2 before 1.0.0.48, and WNR2000v5 before 1.0.0.58.
nvd
CVE-2018-21181HIGHCVSS 7.2fixed in 1.0.0.622020-04-28
CVE-2018-21181 [HIGH] CWE-787 CVE-2018-21181: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D7800 before 1.0.1.28, EX2700 before 1.0.1.32, EX6200v2 before 1.0.1.56, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.3.6, WN2000RPTv3 before 1.0.1.20, WN3000RPv3 before 1.0.2.52, WN3100RPv2 before 1.0.0.42, WNDR3700v4 befor
nvd
CVE-2018-21220HIGHCVSS 8.8fixed in 1.0.0.622020-04-28
CVE-2018-21220 [HIGH] CWE-120 CVE-2018-21220: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v
nvd
CVE-2018-21219HIGHCVSS 8.8fixed in 1.0.0.622020-04-28
CVE-2018-21219 [HIGH] CWE-120 CVE-2018-21219: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v
nvd
CVE-2018-21223HIGHCVSS 8.8fixed in 1.0.0.622020-04-28
CVE-2018-21223 [HIGH] CWE-120 CVE-2018-21223: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.50, WNDR
nvd
CVE-2018-21224HIGHCVSS 8.8fixed in 1.0.0.622020-04-28
CVE-2018-21224 [HIGH] CWE-120 CVE-2018-21224: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.50, WNDR
nvd
CVE-2018-21218HIGHCVSS 8.8fixed in 1.0.0.622020-04-28
CVE-2018-21218 [HIGH] CWE-120 CVE-2018-21218: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v
nvd
CVE-2018-21222HIGHCVSS 8.8fixed in 1.0.0.622020-04-28
CVE-2018-21222 [HIGH] CWE-120 CVE-2018-21222: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D7800 before 1.0.1.30, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.50, WNDR
nvd
CVE-2016-11059HIGHCVSS 7.5fixed in 2017-01-062020-04-28
CVE-2016-11059 [HIGH] CWE-200 CVE-2016-11059: Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6
Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before 2017-01-06, D500 before 2017-01-06, D1500 before 2017-01-06, D3600 before 2017-01-06, D6000 before 2017-01-06, D6100 before 2017-01-06, D6200 before 2017-01-06, D6200B before 2017-01-06, D6300B before 2017-01-06, D6300 before 2017-01-06, DGN1
nvd
CVE-2018-21211HIGHCVSS 8.8fixed in 1.0.0.622020-04-28
CVE-2018-21211 [HIGH] CWE-120 CVE-2018-21211: Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affec
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, D7800 before 1.0.1.30, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.96, WNDR4300 before 1.0.2.98, WNDR4300v
nvd
CVE-2018-21196MEDIUMCVSS 6.8fixed in 1.0.0.622020-04-28
CVE-2018-21196 [MEDIUM] CWE-787 CVE-2018-21196: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, R6100 before 1.0.1.20, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, WNDR4300 before 1.0.2.94, and WNR2000v5 before 1.0.0.62.
nvd
CVE-2018-21198MEDIUMCVSS 6.8fixed in 1.0.0.622020-04-28
CVE-2018-21198 [MEDIUM] CWE-787 CVE-2018-21198: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, R7800 before 1.2.0.44, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, WNDR4300 before 1.0.2.94, WNDR4300v2 before 1.0.0.54, WNDR4500v3 before 1.0.0.54, and WNR2000v5 before 1.0.0.62.
nvd
CVE-2018-21192MEDIUMCVSS 6.8fixed in 1.0.0.622020-04-28
CVE-2018-21192 [MEDIUM] CWE-787 CVE-2018-21192: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, R6100 before 1.0.1.20, R7800 before 1.0.2.40, R9000 before 1.0.3.6, WNDR3700v4 before 1.0.2.92, WNDR4300 before 1.0.2.94, WNDR4300v2 before 1.0.0.50, WNDR4500v3 before 1.0.0.50, and WNR2000v5 before 1.0.0.62.
nvd
CVE-2018-21190MEDIUMCVSS 6.8fixed in 1.0.0.622020-04-28
CVE-2018-21190 [MEDIUM] CWE-787 CVE-2018-21190: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, D7800 before 1.0.1.34, R6100 before 1.0.1.20, R7500 before 1.0.0.122, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, WNDR4300 before 1.0.2.94, WNDR4300v2 before 1.0.0.50, WNDR4500v3 before 1.0
nvd
CVE-2018-21197MEDIUMCVSS 6.8fixed in 1.0.0.622020-04-28
CVE-2018-21197 [MEDIUM] CWE-787 CVE-2018-21197: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D7800 before 1.0.1.34, R6100 before 1.0.1.22, R7500 before 1.0.0.122, R7500v2 before 1.0.3.26, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, WNDR4300 before 1.0.2.94, WNDR4300v2 before 1.0.0.50, WNDR4500v3 before 1
nvd
CVE-2018-21189MEDIUMCVSS 6.8fixed in 1.0.0.622020-04-28
CVE-2018-21189 [MEDIUM] CWE-787 CVE-2018-21189: Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, R6100 before 1.0.1.20, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, WNDR4300 before 1.0.2.94, WNDR4300v2 before 1.0.0.50, WNDR4500v3 before 1.0.0.50, and WNR2000v5 before 1.0.0.62.
nvd
1 / 5Next →