Netgear Security Vulnerabilities (CVEs)
Track 273 security vulnerabilities affecting Netgear products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability is a stack overflow in Netgear routers' pptp_user_ip parameter at wiz_pptp.cgi. Attackers can exploit it via crafted POST requests ...
Nov 5, 2024This vulnerability is a stack overflow in specific Netgear router models via the pptp_user_ip parameter in the bsw_pptp.cgi script. Attackers can expl...
Nov 5, 2024This vulnerability in Netgear XR300 routers allows attackers to trigger a stack overflow via the passphrase parameter in bridge_wireless_main.cgi, lea...
Nov 5, 2024This CVE describes a command injection vulnerability in Netgear XR300 routers that allows attackers to execute arbitrary operating system commands by ...
Nov 5, 2024This CVE describes a command injection vulnerability in Netgear R8500 routers that allows attackers to execute arbitrary operating system commands by ...
Nov 5, 2024This vulnerability in Netgear R8500 routers allows attackers to cause a Denial of Service (DoS) by sending a specially crafted POST request to the ipv...
Nov 5, 2024CVE-2024-51014 is a stack overflow vulnerability in Netgear XR300 routers that allows attackers to cause a Denial of Service (DoS) by sending a specia...
Nov 5, 2024Netgear XR300 routers running firmware v1.0.3.78 contain a stack buffer overflow vulnerability in the usb_approve.cgi component. Attackers can exploit...
Nov 5, 2024This vulnerability in Netgear R7000P routers allows attackers to cause a Denial of Service (DoS) by sending a specially crafted POST request to the pp...
Nov 5, 2024This vulnerability in Netgear R7000P routers allows attackers to trigger a stack overflow via the apn parameter in usbISP_detail_edit.cgi, leading to ...
Nov 5, 2024This CVE describes a command injection vulnerability in specific Netgear router models that allows attackers to execute arbitrary operating system com...
Nov 5, 2024This vulnerability in Netgear R8500 routers allows attackers to trigger a stack overflow via the sysDNSHost parameter in ddns.cgi, causing a Denial of...
Nov 5, 2024Multiple Netgear router models contain stack overflow vulnerabilities in the ap_mode.cgi component via DNS parameters. Attackers can exploit these vul...
Nov 5, 2024This vulnerability allows attackers to execute arbitrary operating system commands on Netgear R8500 routers by sending specially crafted requests to t...
Nov 5, 2024This vulnerability allows attackers to cause a Denial of Service (DoS) on Netgear XR300 routers by sending a specially crafted POST request to the wir...
Nov 5, 2024This vulnerability allows remote attackers to execute arbitrary operating system commands on Netgear XR300 routers by sending specially crafted reques...
Nov 5, 2024This CVE describes a command injection vulnerability in specific Netgear router models that allows attackers to execute arbitrary operating system com...
Nov 5, 2024This vulnerability allows attackers to execute arbitrary operating system commands on Netgear R8500 routers by sending specially crafted requests to t...
Nov 5, 2024This vulnerability in Netgear R8500 routers allows attackers to cause a Denial of Service (DoS) by sending a specially crafted POST request to the usb...
Nov 5, 2024This vulnerability allows attackers to cause a Denial of Service (DoS) on affected Netgear routers by sending a specially crafted POST request to the ...
Nov 5, 2024This CVE describes a command injection vulnerability in Netgear R8500 routers where attackers can execute arbitrary operating system commands by sendi...
Nov 5, 2024This vulnerability allows remote attackers to execute arbitrary commands on Netgear EX6120 WiFi extenders by injecting malicious commands into the wan...
Oct 14, 2024This vulnerability allows authenticated attackers to execute arbitrary commands on Netgear R7000 routers by injecting malicious input into the device_...
Oct 14, 2024This vulnerability allows authenticated attackers to execute arbitrary commands on Netgear EX3700 AC750 WiFi Range Extender Essentials Edition devices...
Oct 11, 2024This vulnerability allows remote attackers to execute arbitrary code on Netgear DGN1000WW routers via the Diagnostics page. It affects users running v...
Aug 23, 2024This vulnerability allows authenticated remote attackers to execute arbitrary SQL commands on NETGEAR ProSAFE Network Management System installations,...
Aug 21, 2024This vulnerability allows attackers to bypass authentication on Netgear WNR614 JNR1010V2 N300 routers and access the administrative interface. Attacke...
Jun 7, 2024This vulnerability in Netgear WNR614 routers allows attackers to set passwords that bypass the device's security policy requirements. Attackers could ...
Jun 7, 2024This vulnerability in Netgear WNR614 routers allows attackers to obtain the WPS PIN through implementation flaws in the Wi-Fi Protected Setup feature....
Jun 7, 2024This vulnerability involves insecure permissions in Netgear WNR614 JNR1010V2 routers, allowing attackers to access URLs and directories embedded withi...
Jun 6, 2024This vulnerability allows authenticated remote attackers to execute arbitrary code with SYSTEM privileges on NETGEAR ProSAFE Network Management System...
Jun 6, 2024This vulnerability allows authenticated remote attackers to upload arbitrary files to NETGEAR ProSAFE Network Management System installations, leading...
May 23, 2024This vulnerability allows local attackers with low-privileged access to escalate to SYSTEM privileges on NETGEAR ProSAFE Network Management System ins...
May 23, 2024This is a critical stack-based buffer overflow vulnerability in NETGEAR routers' httpd service that allows network-adjacent attackers to execute arbit...
May 7, 2024This is a critical remote code execution vulnerability in NETGEAR R7800 routers that allows network-adjacent attackers to execute arbitrary code as ro...
May 7, 2024This is a stored cross-site scripting (XSS) vulnerability in NETGEAR ProSAFE Network Management System that allows remote attackers to inject maliciou...
May 3, 2024This vulnerability allows authenticated remote attackers to perform SQL injection through the clearAlertByIds function in NETGEAR ProSAFE Network Mana...
May 3, 2024This is a critical stack-based buffer overflow vulnerability in NETGEAR CAX30 routers that allows network-adjacent attackers to execute arbitrary code...
May 3, 2024This vulnerability in NETGEAR ProSAFE Network Management System allows authenticated attackers to bypass authentication and execute arbitrary code wit...
May 3, 2024This vulnerability allows network-adjacent attackers to execute arbitrary code as root on NETGEAR RAX30 routers by exploiting a stack-based buffer ove...
May 3, 2024This vulnerability allows attackers on the same local network to execute arbitrary commands with root privileges on NETGEAR RAX30 routers without auth...
May 3, 2024This vulnerability allows authenticated attackers to bypass authorization checks in NETGEAR ProSAFE Network Management System's createUser function, e...
May 3, 2024This vulnerability allows remote attackers to bypass authentication on NETGEAR ProSAFE Network Management System installations without requiring any c...
May 3, 2024This vulnerability allows authenticated remote attackers to bypass authentication and upload arbitrary files to NETGEAR ProSAFE Network Management Sys...
May 3, 2024This SQL injection vulnerability in NETGEAR ProSAFE Network Management System allows authenticated attackers to bypass authentication mechanisms and e...
May 3, 2024This vulnerability allows authenticated remote attackers to bypass authentication and upload arbitrary files to NETGEAR ProSAFE Network Management Sys...
May 3, 2024This vulnerability in NETGEAR routers allows network-adjacent attackers to exploit improper certificate validation in the HTTPS update functionality. ...
May 3, 2024This is a critical stack-based buffer overflow vulnerability in NETGEAR RAX30 routers that allows network-adjacent attackers to execute arbitrary code...
May 3, 2024This vulnerability allows physically present attackers to access arbitrary files on NETGEAR RAX30 routers by exploiting improper symbolic link handlin...
May 3, 2024This vulnerability allows network-adjacent attackers to execute arbitrary code on NETGEAR RAX30 routers without authentication. Attackers can exploit ...
May 3, 2024Why Monitor Netgear Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 273+ known vulnerabilities affecting Netgear products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Netgear packages in under 60 seconds. No agents required - completely agentless scanning that works across Netgear deployments.
Free vulnerability database: Access detailed information about every Netgear CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Netgear CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
