Wndr4300_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Wndr4300_firmware
(Netgear)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	123

Date	Id	Summary	Products	Score	Patch	Annotated
2017-01-30	CVE-2016-10174	The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated attacker to achieve remote code execution.	D6100_firmware, D7000_firmware, D7800_firmware, Jnr1010v2_firmware, Jnr3300_firmware, Jwnr2010v5_firmware, R2000_firmware, R6100_firmware, R6220_firmware, R7500_firmware, R7500v2_firmware, Wndr3700v4_firmware, Wndr3800_firmware, Wndr4300_firmware, Wndr4300v2_firmware, Wndr4500v3_firmware, Wndr4700_firmware, Wnr1000v2_firmware, Wnr1000v4_firmware, Wnr2000v3_firmware, Wnr2000v4_firmware, Wnr2000v5_firmware, Wnr2020_firmware, Wnr2050_firmware, Wnr2200_firmware, Wnr2500_firmware, Wnr614_firmware, Wnr618_firmware	9.8
2021-08-11	CVE-2021-38514	Certain NETGEAR devices are affected by authentication bypass. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6100 before 1.0.0.63, D6200 before 1.1.00.34, D6220 before 1.0.0.48, D6400 before 1.0.0.86, D7000 before 1.0.1.70, D7000v2 before 1.0.0.52, D7800 before 1.0.1.56, D8500 before 1.0.3.44, DC112A before 1.0.0.42, DGN2200v4 before 1.0.0.108, DGND2200Bv4 before 1.0.0.108, EX2700 before 1.0.1.48, EX3700 before 1.0.0.76, EX3800 before 1.0.0.76, EX6000 before 1.0.0.38, EX6100...	D3600_firmware, D6000_firmware, D6100_firmware, D6200_firmware, D6220_firmware, D6400_firmware, D7000_firmware, D7800_firmware, D8500_firmware, Dc112a_firmware, Dgn2200_firmware, Dgnd2200b_firmware, Ex2700_firmware, Ex3700_firmware, Ex3800_firmware, Ex6000_firmware, Ex6100_firmware, Ex6120_firmware, Ex6130_firmware, Ex6150_firmware, Ex6200_firmware, Ex6400_firmware, Ex7000_firmware, Ex7300_firmware, Ex8000_firmware, Jr6150_firmware, Pr2000_firmware, R6020_firmware, R6050_firmware, R6080_firmware, R6120_firmware, R6220_firmware, R6250_firmware, R6300_firmware, R6400_firmware, R6700_firmware, R6800_firmware, R6900_firmware, R6900p_firmware, R7000_firmware, R7000p_firmware, R7100lg_firmware, R7300dst_firmware, R7500_firmware, R7800_firmware, R7900_firmware, R7900p_firmware, R8000_firmware, R8000p_firmware, R8300_firmware, R8500_firmware, R9000_firmware, Rbk40_firmware, Rbk50_firmware, Rbk50v_firmware, Rbr40_firmware, Rbr50_firmware, Rbs40_firmware, Rbs40v_firmware, Rbs50_firmware, Rbw30_firmware, Wn2000rpt_firmware, Wn2500rp_firmware, Wn3000rp_firmware, Wn3100rp_firmware, Wndr3400_firmware, Wndr3700_firmware, Wndr4300_firmware, Wndr4500_firmware, Wnr2000_firmware, Wnr2020_firmware, Wnr2050_firmware, Wnr3500l_firmware, Xr500_firmware	2.7
2020-04-16	CVE-2019-20688	Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D6100 before 1.0.0.63, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1.76, EX6150v2 before 1.0.1.76, EX6200v2 before 1.0.1.72, EX6400 before 1.0.2.136, EX7300 before 1.0.2.136, EX8000 before 1.0.1.180, R7800 before 1.0.2.52, R8900 before 1.0.4.2, R9000 before 1.0.4.2, WN2000RPTv3 before 1.0.1.32, WN3000RPv2 before 1.0.0.68, WN3100RPv2 before 1.0.0.60,...	D3600_firmware, D6000_firmware, D6100_firmware, Ex2700_firmware, Ex6100_firmware, Ex6150_firmware, Ex6200_firmware, Ex6400_firmware, Ex7300_firmware, Ex8000_firmware, R7800_firmware, R8900_firmware, R9000_firmware, Wn2000rpt_firmware, Wn3000rp_firmware, Wn3100rp_firmware, Wndr3700_firmware, Wndr4300_firmware, Wndr4500_firmware, Wnr2000_firmware, Xr500_firmware	6.8