Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Netgear — Vulnerabilities & Security Advisories 177

Browse all 177 CVE security advisories affecting Netgear. AI-powered Chinese analysis, POCs, and references for each vulnerability.

NETGEAR manufactures networking hardware, primarily consumer and small business routers, switches, and wireless access points. The company’s extensive vulnerability record, comprising 177 Common Vulnerabilities and Exposures (CVEs), highlights systemic security weaknesses in its embedded firmware. Historically, the most prevalent flaw classes include remote code execution (RCE), which allows attackers to gain full control over devices, and cross-site scripting (XSS) within web management interfaces. Privilege escalation and buffer overflow vulnerabilities are also common, often stemming from insufficient input validation and hardcoded credentials. These defects have facilitated large-scale botnet recruitment and unauthorized network access. While NETGEAR has implemented security response protocols, the high volume of disclosed issues reflects ongoing challenges in securing resource-constrained IoT devices. The persistent presence of critical flaws underscores the difficulty of maintaining robust security standards across a vast portfolio of consumer networking equipment.

Top products by Netgear: ProSAFE Network Management System RAX30 SRX5308 R6700 Multiple Routers EX6200 R7800 R6700v3 JWNR2000v2 R6260 DGND3700 WNDR3700v2 R7000 Orbi Router RBR750 WN604 NETGEAR ProSAFE Network Management System EX6120 XR1000 R7450 N300 WNR2000v5 EX5000 WNCE3001 EX6150 D6400 SPH200D DGN2200B DGN1000 EX6100 DGN1000B WAX610
CVE IDTitleCVSSSeverityPublished
CVE-2023-27360 NETGEAR RAX30 lighttpd Misconfiguration Remote Code Execution Vulnerability — RAX30CWE-345 8.8 -2024-05-03
CVE-2023-27358 NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability — RAX30CWE-89 8.8 -2024-05-03
CVE-2023-27357 NETGEAR RAX30 GetInfo Missing Authentication Information Disclosure Vulnerability — RAX30CWE-306 6.5 -2024-05-03
CVE-2023-27356 NETGEAR RAX30 logCtrl Command Injection Remote Code Execution Vulnerability — RAX30CWE-78 8.0 -2024-05-03
CVE-2024-4235 Netgear DG834Gv5 Web Management Interface cleartext storage — DG834Gv5CWE-312 2.7 Low2024-04-26
CVE-2023-48725 NETGEAR RAX30 安全漏洞 — RAX30CWE-121 7.2 High2024-03-07
CVE-2024-1431 Netgear R7000 Web Management Interface debuginfo.htm information disclosure — R7000CWE-200 4.3 Medium2024-02-11
CVE-2024-1430 Netgear R7000 Web Management Interface currentsetting.htm information disclosure — R7000CWE-200 4.3 Medium2024-02-11
CVE-2023-49694 NETGEAR ProSAFE Network Management System Privilege Escalation Via MySQL Server — NETGEAR ProSAFE Network Management SystemCWE-284 7.8 High2023-11-29
CVE-2023-49693 NETGEAR ProSAFE Network Management System RCE via Unprotected Access to Java Debug Wire Protocol — NETGEAR ProSAFE Network Management SystemCWE-306 9.8 Critical2023-11-29
CVE-2023-2396 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 4.3 Medium2023-04-28
CVE-2023-2395 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 4.3 Medium2023-04-28
CVE-2023-2394 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2393 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2392 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2391 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2390 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2389 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2388 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2387 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2386 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2385 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2384 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2383 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2382 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2381 Netgear SRX5308 Web Management Interface cross site scripting — SRX5308CWE-79 2.4 Low2023-04-28
CVE-2023-2380 Netgear SRX5308 denial of service — SRX5308CWE-404 6.5 Medium2023-04-28
CVE-2022-27645 NETGEAR R6700v3 访问控制错误漏洞 — R6700v3CWE-306 8.8 -2023-03-29
CVE-2022-27641 NETGEAR R6700输入验证错误漏洞 — R6700v3CWE-190 8.8 -2023-03-29
CVE-2022-27642 NETGEAR R6700v3 信息泄露漏洞 — R6700v3CWE-863 8.8 -2023-03-29

This page lists every published CVE security advisory associated with Netgear. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.