VYPR

R8500

by Netgear

CVEs (25)

  • CVE-2024-50998Nov 5, 2024
    Netgear
    R8500
    risk 0.00cvss epss 0.00

    Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component openvpn.cgi via the openvpn_service_port and openvpn_service_port_tun parameters. These vulnerabilities allow attackers to cause a Denial of Service (DoS) via a crafted POST request.

  • CVE-2024-51006Nov 5, 2024
    Netgear
    R8500
    risk 0.00cvss epss 0.00

    Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow via the ipv6_static_ip parameter in the ipv6_tunnel function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

  • CVE-2024-50993Nov 5, 2024
    Netgear
    R8500
    risk 0.00cvss epss 0.01

    Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the sysNewPasswd parameter at admin_account.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request.

  • CVE-2024-52020Nov 5, 2024
    Netgear
    R8500
    risk 0.00cvss epss 0.00

    Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the wan_gateway parameter at wiz_fix2.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request.

  • CVE-2024-50996Nov 5, 2024
    Netgear
    R7000
    risk 0.00cvss epss 0.00

    Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a stack overflow via the bpa_server parameter at genie_bpa.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

Page 2 of 2