cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-25246,https://securityvulnerability.io/vulnerability/CVE-2025-25246,Remote Code Execution Vulnerability in NETGEAR WiFi Routers,"Certain models of NETGEAR WiFi routers, including the XR1000 and XR500, are susceptible to a remote code execution vulnerability. This issue permits unauthenticated users to execute arbitrary code on the devices, potentially compromising the security of the entire network. Users of affected models are advised to update their firmware promptly to mitigate this risk and protect their systems from unauthorized access.",Netgear,"Xr1000,Xr1000v2,Xr500",8.1,HIGH,0.01,false,,false,false,false,,false,false,false,,2025-02-05T00:00:00.000Z,0
CVE-2024-35517,https://securityvulnerability.io/vulnerability/CVE-2024-35517,Command Injection Vulnerability in Netgear XR1000 Router,"The Netgear XR1000 router version 1.0.0.64 has a command injection vulnerability located in the usb_remote_smb_conf.cgi file. This vulnerability allows attackers to exploit the share_name parameter, potentially enabling unauthorized command execution on the router. If successfully exploited, this could lead to serious security risks, including unauthorized access to sensitive router configurations and compromised network integrity.",Netgear,Xr1000 Firmware,7.2,HIGH,0.0004900000058114529,false,,false,false,false,,,false,false,,2024-10-11T00:00:00.000Z,0
CVE-2021-34870,https://securityvulnerability.io/vulnerability/CVE-2021-34870,Information Disclosure Vulnerability in NETGEAR XR1000 Router,"The information disclosure vulnerability in NETGEAR XR1000 routers arises from improper handling of SOAP messages, allowing network-adjacent attackers to disclose sensitive information without requiring authentication. This flaw can lead to the exposure of stored credentials, paving the way for further attacks on the affected systems. Ensure to review your router settings and apply the latest security patches to mitigate risks.",Netgear,Xr1000,6.5,MEDIUM,0.0012499999720603228,false,,false,false,false,,,false,false,,2022-01-25T15:30:42.000Z,0
CVE-2021-45510,https://securityvulnerability.io/vulnerability/CVE-2021-45510,Authentication Bypass Vulnerability in NETGEAR XR1000 Devices,"The NETGEAR XR1000 devices prior to version 1.0.0.58 are susceptible to an authentication bypass vulnerability. This issue allows attackers to circumvent security measures, potentially granting unauthorized access to the device. Users are encouraged to upgrade to the latest firmware to mitigate this risk and ensure their network security is not compromised.",Netgear,Xr1000 Firmware,8.2,HIGH,0.0006900000153109431,false,,false,false,false,,,false,false,,2021-12-26T01:01:40.000Z,0
CVE-2021-45513,https://securityvulnerability.io/vulnerability/CVE-2021-45513,Command Injection Vulnerability in NETGEAR XR1000 Devices,"The NETGEAR XR1000 router is susceptible to command injection, allowing unauthenticated attackers to execute arbitrary commands. This vulnerability enables potential manipulation of the device, leading to unauthorized access and various security risks. Users are advised to update their devices to versions 1.0.0.58 or later to mitigate this risk.",Netgear,Xr1000 Firmware,9.6,CRITICAL,0.0007800000021234155,false,,false,false,false,,,false,false,,2021-12-26T01:01:05.000Z,0
CVE-2021-45514,https://securityvulnerability.io/vulnerability/CVE-2021-45514,Command Injection Vulnerability in NETGEAR XR1000 Router,"The NETGEAR XR1000 router is vulnerable to command injection attacks, allowing unauthenticated attackers to execute arbitrary commands. This vulnerability affects devices running versions prior to 1.0.0.58, potentially compromising network integrity and security. It underscores the necessity for users to update their devices to maintain a secure network environment.",Netgear,Xr1000 Firmware,9.6,CRITICAL,0.0007800000021234155,false,,false,false,false,,,false,false,,2021-12-26T01:00:52.000Z,0
CVE-2021-45517,https://securityvulnerability.io/vulnerability/CVE-2021-45517,Denial of Service Vulnerability in NETGEAR XR1000 Devices,"The NETGEAR XR1000 devices prior to version 1.0.0.58 are susceptible to a denial of service vulnerability, which could allow attackers to disrupt the normal functionality of the device. This may result in the service becoming unresponsive, potentially affecting the reliability of network activities. Users are advised to update their devices to the latest firmware version to mitigate this vulnerability.",Netgear,Xr1000 Firmware,6.5,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2021-12-26T01:00:20.000Z,0
CVE-2021-45518,https://securityvulnerability.io/vulnerability/CVE-2021-45518,Denial of Service Vulnerability in NETGEAR XR1000 Devices,"NETGEAR XR1000 devices running firmware versions prior to 1.0.0.58 are susceptible to a denial of service attack. This vulnerability could allow an adversary to disrupt the normal operation of the device, potentially causing significant impact to network availability. Users are advised to update their firmware to the latest version to mitigate this risk.",Netgear,Xr1000 Firmware,6.5,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2021-12-26T01:00:10.000Z,0
CVE-2021-45519,https://securityvulnerability.io/vulnerability/CVE-2021-45519,Denial of Service Vulnerability in NETGEAR XR1000 Devices,"Certain NETGEAR XR1000 devices running software versions prior to 1.0.0.58 are susceptible to a denial of service attack. This vulnerability can lead to unresponsive network services, impacting device functionality and network performance. Users are advised to update their devices promptly to mitigate potential risks.",Netgear,Xr1000 Firmware,6.5,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2021-12-26T00:59:59.000Z,0
CVE-2021-45522,https://securityvulnerability.io/vulnerability/CVE-2021-45522,Hardcoded Password Vulnerability in NETGEAR XR1000 Router,"The NETGEAR XR1000 routers are affected by a vulnerability involving a hardcoded password, which can potentially allow unauthorized access to the device. This issue affects devices running versions prior to 1.0.0.58, highlighting the importance of updating firmware to prevent potential exploitation and ensure the security of your network.",Netgear,Xr1000 Firmware,6.1,MEDIUM,0.000699999975040555,false,,false,false,false,,,false,false,,2021-12-26T00:59:27.000Z,0
CVE-2021-45654,https://securityvulnerability.io/vulnerability/CVE-2021-45654,Sensitive Information Disclosure in NETGEAR XR1000 Devices,"NETGEAR XR1000 devices prior to version 1.0.0.58 are susceptible to a vulnerability that allows unauthorized access to sensitive information. This issue may potentially expose confidential data, thereby compromising user privacy and security. It is essential to update affected devices to the latest version to mitigate risks associated with this vulnerability.",Netgear,Xr1000 Firmware,9.6,CRITICAL,0.0022100000642240047,false,,false,false,false,,,false,false,,2021-12-26T00:28:34.000Z,0