R7000
by Netgear
CVEs (102)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-44191 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameters KEY1 and KEY2. | |||
| CVE-2022-44184 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_sec. | |||
| CVE-2022-44186 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_pri. | |||
| CVE-2022-44190 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter enable_band_steering. | |||
| CVE-2022-44187 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via wan_dns1_pri. | |||
| CVE-2022-44199 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_server_ip. | |||
| CVE-2022-44197 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_server_ip. | |||
| CVE-2022-44196 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_push1. | |||
| CVE-2022-44194 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameters apmode_dns1_pri and apmode_dns1_sec. | |||
| CVE-2022-44188 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter enable_band_steering. | |||
| CVE-2022-44198 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_push1. | |||
| CVE-2022-44200 | 0.00 | — | 0.01 | Nov 22, 2022 | Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow via parameters: stamode_dns1_pri and stamode_dns1_sec. | |||
| CVE-2022-37234 | 0.00 | — | 0.01 | Sep 22, 2022 | Netgear Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router R7000-V1.0.11.134_10.2.119 is vulnerable to Buffer Overflow via the wl binary in firmware. There is a stack overflow vulnerability caused by strncpy. | |||
| CVE-2021-34977 | 0.00 | — | 0.01 | Jan 13, 2022 | This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7000 1.0.11.116_10.2.100 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of SOAP requests.… | |||
| CVE-2021-45516 | 0.00 | — | 0.00 | Dec 26, 2021 | Certain NETGEAR devices are affected by denial of service. This affects R6400 before 1.0.1.70, R7000 before 1.0.11.126, R6900P before 1.3.3.140, R7000P before 1.3.3.140, R8000 before 1.0.4.74, RBK852 before 3.2.10.11, RBR850 before 3.2.10.11, and RBS850 before 3.2.10.11. | |||
| CVE-2021-45523 | 0.00 | — | 0.01 | Dec 26, 2021 | NETGEAR R7000 devices before 1.0.9.42 are affected by a buffer overflow by an authenticated user. | |||
| CVE-2021-45527 | 0.00 | — | 0.01 | Dec 26, 2021 | Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.68, D6400 before 1.0.0.102, D7000v2 before 1.0.0.66, D8500 before 1.0.3.58, DC112A before 1.0.0.54, EX7000 before 1.0.1.94, EX7500 before 1.0.0.72, R6250 before… | |||
| CVE-2021-45528 | 0.00 | — | 0.01 | Dec 26, 2021 | Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R6300v2 before 1.0.4.52, R6400 before 1.0.1.52, R6900 before 1.0.2.8, R7000 before 1.0.9.88, R7900 before 1.0.3.18, R8000 before 1.0.4.46, R7900P before 1.4.1.50, R8000P before… | |||
| CVE-2021-45530 | 0.00 | — | 0.01 | Dec 26, 2021 | Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R7000 before 1.0.11.126, R7960P before 1.4.2.84, R8000 before 1.0.4.74, RAX200 before 1.0.4.120, R8000P before 1.4.2.84, RAX20 before 1.0.2.82, RAX45 before 1.0.2.82, RAX80 before… | |||
| CVE-2021-45540 | 0.00 | — | 0.01 | Dec 26, 2021 | Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7000 before 1.0.11.126, R7900 before 1.0.4.46, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000 before 1.0.4.74, R8000P before 1.4.2.84, RAX200 before 1.0.3.106, MR60 before… |
- CVE-2022-44191Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameters KEY1 and KEY2.
- CVE-2022-44184Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_sec.
- CVE-2022-44186Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_pri.
- CVE-2022-44190Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter enable_band_steering.
- CVE-2022-44187Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via wan_dns1_pri.
- CVE-2022-44199Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_server_ip.
- CVE-2022-44197Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_server_ip.
- CVE-2022-44196Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_push1.
- CVE-2022-44194Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameters apmode_dns1_pri and apmode_dns1_sec.
- CVE-2022-44188Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter enable_band_steering.
- CVE-2022-44198Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_push1.
- CVE-2022-44200Nov 22, 2022risk 0.00cvss —epss 0.01
Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow via parameters: stamode_dns1_pri and stamode_dns1_sec.
- CVE-2022-37234Sep 22, 2022risk 0.00cvss —epss 0.01
Netgear Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router R7000-V1.0.11.134_10.2.119 is vulnerable to Buffer Overflow via the wl binary in firmware. There is a stack overflow vulnerability caused by strncpy.
- CVE-2021-34977Jan 13, 2022risk 0.00cvss —epss 0.01
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7000 1.0.11.116_10.2.100 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of SOAP requests.…
- CVE-2021-45516Dec 26, 2021risk 0.00cvss —epss 0.00
Certain NETGEAR devices are affected by denial of service. This affects R6400 before 1.0.1.70, R7000 before 1.0.11.126, R6900P before 1.3.3.140, R7000P before 1.3.3.140, R8000 before 1.0.4.74, RBK852 before 3.2.10.11, RBR850 before 3.2.10.11, and RBS850 before 3.2.10.11.
- CVE-2021-45523Dec 26, 2021risk 0.00cvss —epss 0.01
NETGEAR R7000 devices before 1.0.9.42 are affected by a buffer overflow by an authenticated user.
- CVE-2021-45527Dec 26, 2021risk 0.00cvss —epss 0.01
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.68, D6400 before 1.0.0.102, D7000v2 before 1.0.0.66, D8500 before 1.0.3.58, DC112A before 1.0.0.54, EX7000 before 1.0.1.94, EX7500 before 1.0.0.72, R6250 before…
- CVE-2021-45528Dec 26, 2021risk 0.00cvss —epss 0.01
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R6300v2 before 1.0.4.52, R6400 before 1.0.1.52, R6900 before 1.0.2.8, R7000 before 1.0.9.88, R7900 before 1.0.3.18, R8000 before 1.0.4.46, R7900P before 1.4.1.50, R8000P before…
- CVE-2021-45530Dec 26, 2021risk 0.00cvss —epss 0.01
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R7000 before 1.0.11.126, R7960P before 1.4.2.84, R8000 before 1.0.4.74, RAX200 before 1.0.4.120, R8000P before 1.4.2.84, RAX20 before 1.0.2.82, RAX45 before 1.0.2.82, RAX80 before…
- CVE-2021-45540Dec 26, 2021risk 0.00cvss —epss 0.01
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7000 before 1.0.11.126, R7900 before 1.0.4.46, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000 before 1.0.4.74, R8000P before 1.4.2.84, RAX200 before 1.0.3.106, MR60 before…
Page 3 of 6