VYPR

DGN1000B

by Netgear

CVEs (3)

  • CVE-2013-10061Aug 1, 2025
    risk 0.10cvss epss 0.04

    An authenticated OS command injection vulnerability exists in Netgear routers (tested on the DGN1000B model firmware versions 1.1.00.24 and 1.1.00.45) via the TimeToLive parameter in the setup.cgi endpoint. The vulnerability arises from improper input neutralization, enabling…

  • CVE-2024-12847Jan 10, 2025
    risk 0.09cvss epss 0.29

    NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending crafted HTTP requests to the setup.cgi endpoint. This vulnerability has been…

  • CVE-2024-42756Aug 23, 2024
    risk 0.02cvss epss 0.14

    An issue in Netgear DGN1000WW v.1.1.00.45 allows a remote attacker to execute arbitrary code via the Diagnostics page