CVSS: 8.0EPSS: 0%CPEs: 2EXPL: 0CVE-2018-21100
https://notcve.org/view.php?id=CVE-2018-21100
27 Apr 2020 — NETGEAR R7800 devices before 1.0.2.60 are affected by command injection by an authenticated user. Los dispositivos NETGEAR R7800 versiones anteriores a la versión 1.0.2.60 están afectados por una inyección de comandos por parte de un usuario autenticado. • https://kb.netgear.com/000060450/Security-Advisory-for-Post-Authentication-Command-Injection-on-R7800-PSV-2018-0382 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.0EPSS: 0%CPEs: 2EXPL: 0CVE-2018-21099
https://notcve.org/view.php?id=CVE-2018-21099
27 Apr 2020 — NETGEAR R7800 devices before 1.0.2.60 are affected by command injection by an authenticated user. Los dispositivos NETGEAR R7800 versiones anteriores a 1.0.2.60 están afectados por una inyección de comandos por parte de un usuario autenticado. • https://kb.netgear.com/000060451/Security-Advisory-for-Post-Authentication-Command-Injection-on-R7800-PSV-2018-0384 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2018-21098
https://notcve.org/view.php?id=CVE-2018-21098
27 Apr 2020 — NETGEAR R7800 devices before 1.0.2.60 are affected by command injection by an authenticated user. Los dispositivos NETGEAR R7800 versiones anteriores a la versión 1.0.2.60, están afectados por una inyección de comandos por parte de un usuario autenticado. • https://kb.netgear.com/000060452/Security-Advisory-for-Post-Authentication-Command-Injection-on-R7800-PSV-2018-0365 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.8EPSS: 0%CPEs: 22EXPL: 0CVE-2018-21097
https://notcve.org/view.php?id=CVE-2018-21097
27 Apr 2020 — Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects WAC505 before 5.0.5.4, WAC510 before 5.0.5.4, WAC120 before 2.1.7, WN604 before 3.3.10, WNAP320 before 3.7.11.4, WNAP210v2 before 3.7.11.4, WNDAP350 before 3.7.11.4, WNDAP360 before 3.7.11.4, WNDAP660 before 3.7.11.4, WNDAP620 before 2.1.7, and WND930 before 2.1.5. Determinados dispositivos de NETGEAR están afectados por un desbordamiento del búfer en la región stack de la memoria por parte de ... • https://kb.netgear.com/000060457/Security-Advisory-for-Pre-Authentication-Stack-Overflow-on-Some-Wireless-Access-Points-PSV-2018-0094 • CWE-787: Out-of-bounds Write •
CVSS: 7.4EPSS: 0%CPEs: 22EXPL: 0CVE-2018-21096
https://notcve.org/view.php?id=CVE-2018-21096
27 Apr 2020 — Certain NETGEAR devices are affected by CSRF. This affects WAC120 before 2.1.7, WAC505 before 5.0.5.4, WAC510 before 5.0.5.4, WNAP320 before 3.7.11.4, WNAP210v2 before 3.7.11.4, WNDAP350 before 3.7.11.4, WNDAP360 before 3.7.11.4, WNDAP660 before 3.7.11.4, WNDAP620 before 2.1.7, WND930 before 2.1.5, and WN604 before 3.3.10. Determinados dispositivos de NETGEAR están afectados por una vulnerabilidad de tipo CSRF. Esto afecta a WAC120 versiones anteriores a 2.1.7, WAC505 versiones anteriores a 5.0.5.4, WAC510 ... • https://kb.netgear.com/000060455/Security-Advisory-for-Cross-Site-Request-Forgery-on-Some-Wireless-Access-Points-PSV-2018-0096 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2018-21095
https://notcve.org/view.php?id=CVE-2018-21095
27 Apr 2020 — Certain NETGEAR devices are affected by stored XSS. This affects SRR60 before 2.2.1.210 and SRS60 before 2.2.1.210. Determinados dispositivos NETGEAR están afectados por una vulnerabilidad de tipo XSS almacenado. Esto afecta a SRR60 versiones anteriores a 2.2.1.210 y a SRS60 versiones anteriores a 2.2.1.210. • https://kb.netgear.com/000060458/Security-Advisory-for-Stored-Cross-Site-Scripting-on-SRS60-and-SRR60-PSV-2018-0218 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2018-21094
https://notcve.org/view.php?id=CVE-2018-21094
27 Apr 2020 — Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects WAC120 before 2.1.7, WAC505 before 5.0.5.4, WAC510 before 5.0.5.4, WNAP320 before 3.7.11.4, WNAP210v2 before 3.7.11.4, WNDAP350 before 3.7.11.4, WNDAP360 before 3.7.11.4, WNDAP660 before 3.7.11.4, WNDAP620 before 2.1.7, WND930 before 2.1.5, and WN604 before 3.3.10. Determinados dispositivos NETGEAR están afectados por una configuración incorrecta de los ajustes de seguridad. Esto afecta a WAC120 versiones ante... • https://kb.netgear.com/000060460/Security-Advisory-for-a-Security-Misconfiguration-on-Some-Wireless-Access-Points-PSV-2018-0350 •
CVSS: 8.8EPSS: 0%CPEs: 62EXPL: 0CVE-2018-21093
https://notcve.org/view.php?id=CVE-2018-21093
27 Apr 2020 — Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D8500 before 1.0.3.42, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.24, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, R6250 before 1.0.4.26, R6300-2CXNAS before 1.0.3.60, R6300v2 before 1.0.4.28, R6400 before 1.0.1.36, R6400v2 before 1.0.2.52, R6700 before 1.0.1.46, R6900 bef... • https://kb.netgear.com/000060456/Security-Advisory-for-Pre-Authentication-Stack-Overflow-on-Some-Routers-Modem-Routers-Wireless-Extenders-and-Orbi-Satellites-PSV-2017-2011 • CWE-787: Out-of-bounds Write •
CVSS: 6.8EPSS: 0%CPEs: 26EXPL: 0CVE-2018-21228
https://notcve.org/view.php?id=CVE-2018-21228
24 Apr 2020 — Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.34, EX6100v2 before 1.0.1.50, EX6150v2 before 1.0.1.50, EX6200v2 before 1.0.1.44, EX6400 before 1.0.1.60, EX7300 before 1.0.1.60, R6100 before 1.0.1.16, R7500 before 1.0.0.110, R7800 before 1.0.2.32, R9000 before 1.0.2.30, WN3000RPv3 before 1.0.2.50, WNDR4300v2 before 1.0.0.50, and WNDR4500v3 before 1.0.0.50. Determinados dispositivos NETGEAR están afectados por una inyección de comandos por p... • https://kb.netgear.com/000055106/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Routers-Gateways-and-Extenders-PSV-2017-0607 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 6.8EPSS: 0%CPEs: 24EXPL: 0CVE-2018-21227
https://notcve.org/view.php?id=CVE-2018-21227
24 Apr 2020 — Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.34, R6400v2 before 1.0.2.34, R6700 before 1.0.1.30, R6900 before 1.0.1.30, R6900P before 1.0.0.62, R7000 before 1.0.9.12, R7000P before 1.0.0.62, R7500v2 before 1.0.3.26, R7800 before 1.0.2.42, R9000 before 1.0.3.10, WNDR4300v2 before 1.0.0.50, and WNDR4500v3 before 1.0.0.50. Determinados dispositivos NETGEAR están afectados por una inyección de comandos por parte de un usuario autenticado. Es... • https://kb.netgear.com/000055109/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Routers-and-Gateways-PSV-2017-0737 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •