cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-45548,https://securityvulnerability.io/vulnerability/CVE-2021-45548,Command Injection Vulnerability in NETGEAR WiFi Routers and Extenders,"NETGEAR devices are exposed to a command injection vulnerability that allows authenticated users to execute arbitrary commands. This affects various models, including popular routers and extenders, prior to specific firmware versions. If exploited, this vulnerability could compromise the device’s integrity and lead to unauthorized actions, which may severely impact user privacy and security.",Netgear,D7800 Firmware,6.3,MEDIUM,0.001769999973475933,false,,false,false,false,,,false,false,,2021-12-26T00:52:37.000Z,0
CVE-2021-45552,https://securityvulnerability.io/vulnerability/CVE-2021-45552,Command Injection Vulnerability in NETGEAR Routers,"Certain NETGEAR routers are susceptible to a command injection vulnerability that can be exploited by an authenticated user. This flaw allows unauthorized command execution with potential adverse effects on the device's integrity and operational security. Users of affected devices, including models such as D7800, R7500v2, R7800, R8900, R9000, RAX120, and XR700, should apply the recommended firmware updates to mitigate this security risk.",Netgear,D7800 Firmware,6.3,MEDIUM,0.001769999973475933,false,,false,false,false,,,false,false,,2021-12-26T00:51:32.000Z,0
CVE-2021-45602,https://securityvulnerability.io/vulnerability/CVE-2021-45602,Command Injection Vulnerability in Multiple NETGEAR Devices,"Certain NETGEAR devices are susceptible to command injection vulnerabilities that can be exploited by an authenticated user. This security issue affects multiple models, including older firmware versions, making it critical for users to apply necessary updates. The exploitation of this vulnerability may lead to unauthorized command execution, compromising device integrity and user data security. Regularly updating firmware and monitoring network devices are essential steps for maintaining robust cybersecurity.",Netgear,D7800 Firmware,6.1,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-12-26T00:38:46.000Z,0
CVE-2021-45603,https://securityvulnerability.io/vulnerability/CVE-2021-45603,Sensitive Information Disclosure in NETGEAR Devices,"Certain NETGEAR devices suffer from a vulnerability that allows an attacker to disclose sensitive information. A crafted Universal Plug and Play (UPnP) request may reveal a device's serial number, which could lead to unauthorized password resets. This issue affects various models and firmware versions, leaving them susceptible to exploitation and further security risks.",Netgear,D7800 Firmware,6.1,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-12-26T00:38:30.000Z,0
CVE-2021-45608,https://securityvulnerability.io/vulnerability/CVE-2021-45608,"Integer Overflow Vulnerability in D-Link, Edimax, NETGEAR, TP-Link, Tenda, and Western Digital Products","Several consumer routers from vendors like D-Link, NETGEAR, and TP-Link are susceptible to an integer overflow issue, potentially allowing unauthenticated remote attackers to exploit this vulnerability. While the vulnerability resides within the KCodes NetUSB kernel module's SoftwareBus_dispatchNormalEPMsgOut function, its exploitation complexity is notably high. This flaw could lead to remote code execution through the WAN interface, specifically via TCP port 20005. Security measures and software updates are crucial to protecting against this type of attack, given the potential risk associated with the overflow issue.",Netgear,D7800 Firmware,6.5,MEDIUM,0.007430000230669975,false,,false,false,false,,,false,false,,2021-12-26T00:37:23.000Z,0
CVE-2021-45618,https://securityvulnerability.io/vulnerability/CVE-2021-45618,Command Injection Vulnerability in NETGEAR Routers and Extenders,"Certain NETGEAR devices are susceptible to a command injection attack due to improper validation of user-supplied input. An unauthenticated attacker can exploit this vulnerability to execute arbitrary commands, potentially compromising the affected router or extender. This affects a range of NETGEAR models that have not received firmware updates, emphasizing the importance of keeping device software up to date to safeguard against such attacks.",Netgear,D7800 Firmware,9.6,CRITICAL,0.0052999998442828655,false,,false,false,false,,,false,false,,2021-12-26T00:35:27.000Z,0
CVE-2021-45642,https://securityvulnerability.io/vulnerability/CVE-2021-45642,Security Misconfiguration in NETGEAR Routers and WiFi Systems,"Certain NETGEAR devices are affected by a security misconfiguration that can expose them to unauthorized access or data breaches. This issue is present in several router and extender models, where improper security settings allow potential attackers to exploit the affected devices. Users are recommended to upgrade their devices to the latest firmware versions available to mitigate the risks associated with this vulnerability. For more details, please refer to the NETGEAR Security Advisory.",Netgear,D7800 Firmware,7.5,HIGH,0.0010400000028312206,false,,false,false,false,,,false,false,,2021-12-26T00:30:40.000Z,0
CVE-2021-45658,https://securityvulnerability.io/vulnerability/CVE-2021-45658,Server-Side Injection Vulnerability in NETGEAR Routers and Extenders,"Several NETGEAR routers and extenders are susceptible to a server-side injection vulnerability. This type of flaw allows an attacker to manipulate server-side operations by injecting malicious commands, potentially compromising the integrity of the device. It affects a range of NETGEAR devices, with specific versions being more vulnerable, making it crucial for users to update their firmware to mitigate security risks. Detailed information about the affected devices can be found in the NETGEAR security advisory.",Netgear,D7800 Firmware,7.1,HIGH,0.0025500000920146704,false,,false,false,false,,,false,false,,2021-12-26T00:27:48.000Z,0
CVE-2021-38538,https://securityvulnerability.io/vulnerability/CVE-2021-38538,Stored Cross-Site Scripting Vulnerability in NETGEAR Routers and Gateways,"Certain NETGEAR routers and gateways are vulnerable to a stored cross-site scripting (XSS) attack. This vulnerability could allow an attacker to embed malicious scripts into web traffic, which may be executed in the context of a user’s browser, potentially compromising user data and session information.",Netgear,D7800 Firmware,6.3,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2021-08-11T00:17:00.000Z,0
CVE-2021-38529,https://securityvulnerability.io/vulnerability/CVE-2021-38529,Command Injection Vulnerability in NETGEAR Routers and Gateways,"Certain NETGEAR routers and gateways are susceptible to a command injection vulnerability, allowing unauthenticated attackers to execute arbitrary commands. This impacts specific versions of D7800, R7800, R8900, and R9000 models, enabling potential unauthorized access and control over affected devices. It is crucial for users to update their firmware to mitigate risks associated with this vulnerability.",Netgear,D7800 Firmware,8.3,HIGH,0.0052999998442828655,false,,false,false,false,,,false,false,,2021-08-11T00:00:32.000Z,0
CVE-2020-35813,https://securityvulnerability.io/vulnerability/CVE-2020-35813,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, XR700 before 1.0.1.10, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, XR500 before 2.3.2.56, and RAX120 before 1.0.0.78.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35807,https://securityvulnerability.io/vulnerability/CVE-2020-35807,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.68, RAX120 before 1.0.0.78, RBK22 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and WN3000RPv2 before 1.0.0.78.",Netgear,D7800 Firmware,6,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35804,https://securityvulnerability.io/vulnerability/CVE-2020-35804,,"Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D7800 before 1.0.1.58, R7800 before 1.0.2.74, R8900 before 1.0.5.18, R9000 before 1.0.5.18, and XR700 before 1.0.1.34.",Netgear,D7800 Firmware,7.6,HIGH,0.000699999975040555,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35812,https://securityvulnerability.io/vulnerability/CVE-2020-35812,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35814,https://securityvulnerability.io/vulnerability/CVE-2020-35814,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35824,https://securityvulnerability.io/vulnerability/CVE-2020-35824,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35825,https://securityvulnerability.io/vulnerability/CVE-2020-35825,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35821,https://securityvulnerability.io/vulnerability/CVE-2020-35821,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35790,https://securityvulnerability.io/vulnerability/CVE-2020-35790,,"Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.68, R8900 before 1.0.4.26, and R9000 before 1.0.4.26.",Netgear,D7800 Firmware,6.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35818,https://securityvulnerability.io/vulnerability/CVE-2020-35818,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBR20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35820,https://securityvulnerability.io/vulnerability/CVE-2020-35820,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35819,https://securityvulnerability.io/vulnerability/CVE-2020-35819,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35806,https://securityvulnerability.io/vulnerability/CVE-2020-35806,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, RAX120 before 1.0.0.78, RBK22 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and WN3000RPv2 before 1.0.0.78.",Netgear,D7800 Firmware,6,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35810,https://securityvulnerability.io/vulnerability/CVE-2020-35810,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0
CVE-2020-35823,https://securityvulnerability.io/vulnerability/CVE-2020-35823,,"Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK50 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, XR500 before 2.3.2.56, and XR700 before 1.0.1.10.",Netgear,D7800 Firmware,6.1,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-12-30T00:15:00.000Z,0