📦 Xr300 Firmware
by Netgear
🔍 What is Xr300 Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows unauthenticated remote attackers to execute arbitrary code on affected NETGEAR routers via a buffer overflow. It affects multiple NETGEAR router models running outdated firmw...
This CVE describes a critical buffer overflow vulnerability in multiple NETGEAR router models that allows unauthenticated remote attackers to execute arbitrary code. The vulnerability affects specific...
This vulnerability allows unauthenticated attackers to execute arbitrary commands on affected NETGEAR devices via command injection. It affects multiple NETGEAR routers, extenders, and WiFi systems ru...
CVE-2021-45621 is a critical command injection vulnerability affecting multiple NETGEAR routers, extenders, and WiFi systems. Unauthenticated attackers can execute arbitrary commands on affected devic...
This vulnerability allows unauthenticated attackers to execute arbitrary commands on affected NETGEAR routers via command injection. It affects multiple NETGEAR router models running vulnerable firmwa...
This CVE describes a post-authentication buffer overflow vulnerability in multiple NETGEAR routers, extenders, and WiFi systems. An authenticated attacker could exploit this to execute arbitrary code ...
This vulnerability allows unauthenticated attackers to execute arbitrary commands on affected NETGEAR devices via command injection. It affects multiple NETGEAR router and gateway models running vulne...
This CVE describes a critical buffer overflow vulnerability in multiple NETGEAR routers, range extenders, and Orbi WiFi systems. An unauthenticated attacker can exploit this remotely to execute arbitr...
CVE-2020-35800 is a security misconfiguration vulnerability affecting numerous NETGEAR routers, range extenders, and Orbi WiFi systems. It allows attackers to bypass authentication and access administ...
This CVE describes a command injection vulnerability in specific Netgear router models via the wlg_adv.cgi component's apmode_gateway parameter. Attackers can execute arbitrary operating system comman...
This CVE describes a command injection vulnerability in Netgear XR300 routers that allows attackers to execute arbitrary operating system commands by sending specially crafted requests to the genie_dy...
This CVE describes a command injection vulnerability in specific Netgear router models that allows attackers to execute arbitrary operating system commands via the wan_gateway parameter. Attackers can...
This vulnerability allows remote attackers to execute arbitrary operating system commands on Netgear XR300 routers by sending specially crafted requests to the wiz_dyn.cgi endpoint. Attackers can gain...
This CVE describes a command injection vulnerability in specific Netgear router models that allows attackers to execute arbitrary operating system commands through the ap_mode.cgi component. Attackers...
This is a critical stack-based buffer overflow vulnerability in NETGEAR routers' httpd service that allows network-adjacent attackers to execute arbitrary code as root without authentication. It affec...
This vulnerability allows remote attackers to execute arbitrary code on Netgear XR300 routers via buffer overflows in the wla_ssid and wlg_ssid parameters. Attackers can exploit this to gain full cont...
This vulnerability affects multiple NETGEAR routers and extenders that use weak cryptography implementations, potentially allowing attackers to decrypt sensitive communications or bypass authenticatio...
This is a critical buffer overflow vulnerability in NETGEAR R6400v2 routers that allows network-adjacent attackers to execute arbitrary code as root without authentication. The flaw exists in the UPnP...
This vulnerability allows attackers on the same network to execute arbitrary code as root on NETGEAR R6400 and R6700 routers without authentication. The flaw exists in the upnpd service, where a craft...
A stack-based buffer overflow vulnerability in Netgear XR300 routers allows attackers to execute arbitrary code or crash the device by sending specially crafted POST requests to the usb_device.cgi end...
This vulnerability allows attackers to cause a Denial of Service (DoS) on affected Netgear routers by sending a specially crafted POST request that triggers a stack overflow in the pppoe_localip param...
This vulnerability allows attackers to cause a Denial of Service (DoS) on affected Netgear routers by sending a specially crafted POST request that triggers a stack overflow in the pppoe_localip param...
This vulnerability is a stack overflow in Netgear routers' pptp_user_ip parameter at wiz_pptp.cgi. Attackers can exploit it via crafted POST requests to cause Denial of Service (DoS), potentially cras...
This vulnerability is a stack overflow in specific Netgear router models via the pptp_user_ip parameter in the bsw_pptp.cgi script. Attackers can exploit it by sending a crafted POST request to cause ...
This vulnerability in Netgear XR300 routers allows attackers to trigger a stack overflow via the passphrase parameter in bridge_wireless_main.cgi, leading to Denial of Service (DoS). Attackers can exp...
CVE-2024-51014 is a stack overflow vulnerability in Netgear XR300 routers that allows attackers to cause a Denial of Service (DoS) by sending a specially crafted POST request to the bridge_wireless_ma...
Netgear XR300 routers running firmware v1.0.3.78 contain a stack buffer overflow vulnerability in the usb_approve.cgi component. Attackers can exploit this by sending specially crafted POST requests t...
Multiple Netgear router models contain stack overflow vulnerabilities in the ap_mode.cgi component via DNS parameters. Attackers can exploit these vulnerabilities by sending crafted POST requests to c...
This vulnerability allows attackers to cause a Denial of Service (DoS) on Netgear XR300 routers by sending a specially crafted POST request to the wireless.cgi endpoint. The stack overflow in the pass...
This vulnerability allows attackers to cause a Denial of Service (DoS) on affected Netgear routers by sending a specially crafted POST request to the pptp.cgi endpoint. The stack overflow in the pptp_...