Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In 2020
CVE-2020-35788
NETGEAR WAC104 devices before 1.0.4.13 are affected by a buffer overflow by an authenticated user.
CVSS Score
7.6
EPSS Score
0.001
Published
2020-12-30
CVE-2020-35789
NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an authenticated user.
CVSS Score
8.8
EPSS Score
0.008
Published
2020-12-30
CVE-2020-35790
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.56, R7800 before 1.0.2.68, R8900 before 1.0.4.26, and R9000 before 1.0.4.26.
CVSS Score
6.4
EPSS Score
0.002
Published
2020-12-30
CVE-2020-35791
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7800 before 1.0.2.68, R8900 before 1.0.5.2, and R9000 before 1.0.5.2.
CVSS Score
6.4
EPSS Score
0.001
Published
2020-12-30
CVE-2020-35792
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7500v2 before 1.0.3.48, R8900 before 1.0.5.2, R9000 before 1.0.5.2, and R7800 before 1.0.2.68.
CVSS Score
8.3
EPSS Score
0.005
Published
2020-12-30
CVE-2020-35793
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.58, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.5.2, and R9000 before 1.0.5.2.
CVSS Score
6.1
EPSS Score
0.001
Published
2020-12-30
CVE-2020-10206
Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device.
CVSS Score
4.4
EPSS Score
0.0
Published
2020-12-30
CVE-2020-10208
Command Injection in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows authenticated remote attackers to execute arbitrary commands with root user privileges.
CVSS Score
9.9
EPSS Score
0.085
Published
2020-12-30
CVE-2020-10209
Command Injection in the CPE WAN Management Protocol (CWMP) registration in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows man-in-the-middle attackers to execute arbitrary commands with root level privileges.
CVSS Score
8.1
EPSS Score
0.028
Published
2020-12-30
CVE-2020-35777
NETGEAR DGN2200v1 devices before v1.0.0.58 are affected by command injection.
CVSS Score
8.4
EPSS Score
0.006
Published
2020-12-30


Products
Pricing
Contact Us

Shodan ® - All rights reserved