Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Netgear — Vulnerabilities & Security Advisories 177

Browse all 177 CVE security advisories affecting Netgear. AI-powered Chinese analysis, POCs, and references for each vulnerability.

NETGEAR manufactures networking hardware, primarily consumer and small business routers, switches, and wireless access points. The company’s extensive vulnerability record, comprising 177 Common Vulnerabilities and Exposures (CVEs), highlights systemic security weaknesses in its embedded firmware. Historically, the most prevalent flaw classes include remote code execution (RCE), which allows attackers to gain full control over devices, and cross-site scripting (XSS) within web management interfaces. Privilege escalation and buffer overflow vulnerabilities are also common, often stemming from insufficient input validation and hardcoded credentials. These defects have facilitated large-scale botnet recruitment and unauthorized network access. While NETGEAR has implemented security response protocols, the high volume of disclosed issues reflects ongoing challenges in securing resource-constrained IoT devices. The persistent presence of critical flaws underscores the difficulty of maintaining robust security standards across a vast portfolio of consumer networking equipment.

Top products by Netgear: ProSAFE Network Management System RAX30 SRX5308 R6700 Multiple Routers EX6200 R7800 R6700v3 JWNR2000v2 R6260 DGND3700 WNDR3700v2 R7000 Orbi Router RBR750 WN604 NETGEAR ProSAFE Network Management System EX6120 XR1000 R7450 N300 WNR2000v5 EX5000 WNCE3001 EX6150 D6400 SPH200D DGN2200B DGN1000 EX6100 DGN1000B WAX610
CVE IDTitleCVSSSeverityPublished
CVE-2021-34983 NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability — Multiple RoutersCWE-306 6.5 -2024-05-07
CVE-2021-34982 NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability — Multiple RoutersCWE-121 8.8 -2024-05-07
CVE-2021-34947 NETGEAR R7800 net-cgi Out-Of-Bounds Write Remote Code Execution Vulnerability — R7800CWE-787 8.8 -2024-05-07
CVE-2023-50231 NETGEAR ProSAFE Network Management System saveNodeLabel Cross-Site Scripting Privilege Escalation Vulnerability — ProSAFE Network Management SystemCWE-79 6.1 -2024-05-03
CVE-2023-44450 NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code Execution Vulnerability — ProSAFE Network Management SystemCWE-89 8.8 -2024-05-03
CVE-2023-44449 NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation Vulnerability — ProSAFE Network Management SystemCWE-89 8.8 -2024-05-03
CVE-2023-44445 NETGEAR CAX30 SSO Stack-based Buffer Overflow Remote Code Execution Vulnerability — CAX30CWE-121 8.8 -2024-05-03
CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability — Orbi 760CWE-306 8.8 -2024-05-03
CVE-2023-41182 NETGEAR ProSAFE Network Management System ZipUtils Directory Traversal Remote Code Execution Vulnerability — ProSAFE Network Management SystemCWE-22 8.8 -2024-05-03
CVE-2023-40480 NETGEAR RAX30 DHCP Server Command Injection Remote Code Execution Vulnerability — RAX30CWE-78 8.8 -2024-05-03
CVE-2023-40479 NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability — RAX30CWE-78 8.8 -2024-05-03
CVE-2023-40478 NETGEAR RAX30 Telnet CLI passwd Stack-based Buffer Overflow Remote Code Execution Vulnerability — RAX30CWE-121 8.0 -2024-05-03
CVE-2023-38102 NETGEAR ProSAFE Network Management System createUser Missing Authorization Privilege Escalation Vulnerability — ProSAFE Network Management SystemCWE-862 9.8 -2024-05-03
CVE-2023-38101 NETGEAR ProSAFE Network Management System SettingConfigController Exposed Dangerous Function Remote Code Execution Vulnerability — ProSAFE Network Management SystemCWE-749 8.8 -2024-05-03
CVE-2023-38100 NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation Vulnerability — ProSAFE Network Management SystemCWE-89 8.8 -2024-05-03
CVE-2023-38099 NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code Execution Vulnerability — ProSAFE Network Management SystemCWE-89 8.8 -2024-05-03
CVE-2023-38098 NETGEAR ProSAFE Network Management System UpLoadServlet Unrestricted File Upload Remote Code Execution Vulnerability — ProSAFE Network Management SystemCWE-434 8.8 -2024-05-03
CVE-2023-38097 NETGEAR ProSAFE Network Management System BkreProcessThread Exposed Dangerous Function Remote Code Execution Vulnerability — ProSAFE Network Management SystemCWE-749 8.8 -2024-05-03
CVE-2023-38096 NETGEAR ProSAFE Network Management System MyHandlerInterceptor Authentication Bypass Vulnerability — ProSAFE Network Management SystemCWE-287 9.8 -2024-05-03
CVE-2023-38095 NETGEAR ProSAFE Network Management System MFileUploadController Unrestricted File Upload Remote Code Execution Vulnerability — ProSAFE Network Management SystemCWE-434 8.8 -2024-05-03
CVE-2023-35722 NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability — RAX30CWE-78 8.8 -2024-05-03
CVE-2023-35721 NETGEAR Multiple Routers curl_post Improper Certificate Validation Remote Code Execution Vulnerability — Multiple RoutersCWE-295 8.8 -2024-05-03
CVE-2023-34284 NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability — RAX30CWE-798 8.8 -2024-05-03
CVE-2023-34285 NETGEAR RAX30 cmsCli_authenticate Stack-based Buffer Overflow Remote Code Execution Vulnerability — RAX30CWE-121 8.8 -2024-05-03
CVE-2023-34283 NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability — RAX30CWE-59 4.6 -2024-05-03
CVE-2023-27370 NETGEAR RAX30 Device Configuration Cleartext Storage Information Disclosure Vulnerability — RAX30CWE-312 5.7 -2024-05-03
CVE-2023-27369 NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability — RAX30CWE-121 8.8 -2024-05-03
CVE-2023-27368 NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability — RAX30CWE-121 8.8AIHighAI2024-05-03
CVE-2023-27367 NETGEAR RAX30 libcms_cli Command Injection Remote Code Execution Vulnerability — RAX30CWE-78 8.0 -2024-05-03
CVE-2023-27361 NETGEAR RAX30 rex_cgi JSON Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — RAX30CWE-121 8.0 -2024-05-03

This page lists every published CVE security advisory associated with Netgear. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.