Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

NETGEAR — Vulnerabilities & Security Advisories 177

Browse all 177 CVE security advisories affecting NETGEAR. AI-powered Chinese analysis, POCs, and references for each vulnerability.

NETGEAR manufactures networking hardware, primarily consumer and small business routers, switches, and wireless access points. The company’s extensive vulnerability record, comprising 177 Common Vulnerabilities and Exposures (CVEs), highlights systemic security weaknesses in its embedded firmware. Historically, the most prevalent flaw classes include remote code execution (RCE), which allows attackers to gain full control over devices, and cross-site scripting (XSS) within web management interfaces. Privilege escalation and buffer overflow vulnerabilities are also common, often stemming from insufficient input validation and hardcoded credentials. These defects have facilitated large-scale botnet recruitment and unauthorized network access. While NETGEAR has implemented security response protocols, the high volume of disclosed issues reflects ongoing challenges in securing resource-constrained IoT devices. The persistent presence of critical flaws underscores the difficulty of maintaining robust security standards across a vast portfolio of consumer networking equipment.

Top products by NETGEAR: ProSAFE Network Management System RAX30 SRX5308 R6700 Multiple Routers EX6200 R7800 R6700v3 JWNR2000v2 R6260 DGND3700 WNDR3700v2 R7000 Orbi Router RBR750 WN604 NETGEAR ProSAFE Network Management System EX6120 XR1000 R7450 N300 WNR2000v5 EX5000 WNCE3001 EX6150 D6400 SPH200D DGN2200B DGN1000 EX6100 DGN1000B WAX610
CVE IDTitleCVSSSeverityPublished
CVE-2026-24714 NETGEAR PR2000 安全漏洞 — NETGEAR productsCWE-1242 7.1AIHighAI2026-01-30
CVE-2026-0404 Insufficient input validation in NETGEAR Orbi routers — RBRE960CWE-20 8.0AIHighAI2026-01-13
CVE-2026-0408 Path traversal vulnerability in Netgear WiFi Range Extenders — EX5000CWE-287 5.7AIMediumAI2026-01-13
CVE-2026-0407 Authentication bypass in NETGEAR WiFi Range Extenders via network adjacent attacks — EX5000CWE-287 8.8AIHighAI2026-01-13
CVE-2026-0406 Insufficient input validation in NETGEAR Nighthawk router XR1000v2 — XR1000v2CWE-20 8.8AIHighAI2026-01-13
CVE-2026-0405 Authentication Bypass in NETGEAR Orbi Devices — RBE970CWE-287 6.8AIMediumAI2026-01-13
CVE-2026-0403 Insufficient input validation in NETGEAR Orbi routers — RBR750CWE-20 8.8AIHighAI2026-01-13
CVE-2025-12946 Improper input validation in NETGEAR Nighthawk routers — RS700CWE-20 9.0AICriticalAI2025-12-09
CVE-2025-12945 Improper input validation in NETGEAR Nighthawk router R7000P — R7000PCWE-20 7.2AIHighAI2025-12-09
CVE-2025-12941 Denial of Service Vulnerability in NETGEAR C6220 and C6230 — C6220CWE-306 5.5AIMediumAI2025-12-09
CVE-2025-12944 Improper input validation in NETGEAR DGN2200v4 — DGN2200v4CWE-20 9.8 -2025-11-11
CVE-2025-12943 Improper certificate validation in firmware update logic in NETGEAR RAX30 and RAXE300 — RAX30CWE-295 9.8 -2025-11-11
CVE-2025-12942 Improper input validation in NETGEAR R6260 and R6850 — R6260CWE-20 7.5 -2025-11-11
CVE-2025-12940 Credentials recorded in logs in NETGEAR WAX610 and WAX610Y — WAX610CWE-532 6.5 -2025-11-11
CVE-2013-10063 Netgear SPH200D <= 1.0.4.80 Path Traversal via HTTP GET — SPH200DCWE-22 6.5 -2025-08-01
CVE-2013-10060 Netgear Routers pppoe.cgi RCE — DGN2200BCWE-78 8.8 -2025-08-01
CVE-2013-10061 Netgear Routers setup.cgi RCE — DGN1000BCWE-78 8.8 -2025-08-01
CVE-2025-7407 Netgear D6400 diag.cgi os command injection — D6400CWE-78 6.3 Medium2025-07-10
CVE-2025-6565 Netgear WNCE3001 HTTP POST Request http_d stack-based overflow — WNCE3001CWE-121 8.8 High2025-06-24
CVE-2025-6511 Netgear EX6150 sub_410090 stack-based overflow — EX6150CWE-121 8.8 High2025-06-23
CVE-2025-6510 Netgear EX6100 sub_415EF8 stack-based overflow — EX6100CWE-121 8.8 High2025-06-23
CVE-2025-5934 Netgear EX3700 mtd sub_41619C stack-based overflow — EX3700CWE-121 8.8 High2025-06-10
CVE-2025-5495 Netgear WNR614 URL improper authentication — WNR614CWE-287 7.3 High2025-06-03
CVE-2025-4980 Netgear DGND3700 mini_http currentsetting.htm information disclosure — DGND3700CWE-200 5.3 Medium2025-05-20
CVE-2025-4978 Netgear DGND3700 Basic Authentication BRS_top.html improper authentication — DGND3700CWE-287 9.8 Critical2025-05-20
CVE-2025-4977 Netgear DGND3700 BRS_top.html information disclosure — DGND3700CWE-200 5.3 Medium2025-05-20
CVE-2025-4150 Netgear EX6200 sub_54340 buffer overflow — EX6200CWE-120 8.8 High2025-05-01
CVE-2025-4149 Netgear EX6200 sub_54014 buffer overflow — EX6200CWE-120 8.8 High2025-05-01
CVE-2025-4148 Netgear EX6200 sub_503FC buffer overflow — EX6200CWE-120 8.8 High2025-05-01
CVE-2025-4147 Netgear EX6200 sub_47F7C buffer overflow — EX6200CWE-120 8.8 High2025-05-01

This page lists every published CVE security advisory associated with NETGEAR. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.