Netgear: >> R7000p Firmware Security Vulnerabilities
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects RAX40 before 1.0.2.60, RAX35 before 1.0.2.60, R6400v2 before 1.0.4.122, R6700v3 before 1.0.4.122, R6900P before 1.3.3.152, R7000P before 1.3.3.152, R7000 before 1.0.11.136, R7960P before 1.4.4.94, and R8000P before 1.4.4.94.
CVSS Score
7.4
EPSS Score
0.009
Published
2022-12-30
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_sec.
CVSS Score
9.8
EPSS Score
0.01
Published
2022-11-22
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_server_ip.
CVSS Score
9.8
EPSS Score
0.011
Published
2022-11-22
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_push1.
CVSS Score
9.8
EPSS Score
0.01
Published
2022-11-22
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_server_ip.
CVSS Score
9.8
EPSS Score
0.01
Published
2022-11-22
Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow via parameters: stamode_dns1_pri and stamode_dns1_sec.
CVSS Score
9.8
EPSS Score
0.01
Published
2022-11-22
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameters KEY1 and KEY2.
CVSS Score
9.8
EPSS Score
0.011
Published
2022-11-22
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameters: starthour, startminute , endhour, and endminute.
CVSS Score
9.8
EPSS Score
0.011
Published
2022-11-22
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameters apmode_dns1_pri and apmode_dns1_sec.
CVSS Score
9.8
EPSS Score
0.014
Published
2022-11-22
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_push1.
CVSS Score
9.8
EPSS Score
0.011
Published
2022-11-22