Netgear Dgn2200_firmware
38 CVEs affecting Netgear Dgn2200_firmware. Latest disclosed: 2025-11-11. Critical: 4, High: 14.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-38516 | Critical | 10.0 | 2021-08-11 | Certain NETGEAR devices are affected by lack of access control at the function level. This affects D6220 before 1.0.0.48, D6400 before 1.0.0.82, D7000v2 before… |
CVE-2019-17373 | Critical | 9.8 | 2019-10-09 | Certain NETGEAR devices allow unauthenticated access to critical .cgi and .htm pages via a substring ending with .jpg, such as by appending ?x=1.jpg to a URL… |
CVE-2016-5649 | Critical | 9.8 | 2018-07-24 | A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V1.0.0.50_7.0.50, and DGND3700, version DGND3700-V1.0.0.17_1.0.17, wh… |
CVE-2017-6077 | Critical | 9.8 | 2017-02-22 | ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters… |
CVE-2025-12944 | High | 8.8 | 2025-11-11 | Improper input validation in NETGEAR DGN2200v4 (N300 Wireless ADSL2+ Modem Router) allows attackers with direct network access to the device to potentially exe… |
CVE-2024-57046 | High | 8.8 | 2025-02-18 | A vulnerability in the Netgear DGN2200 router with firmware version v1.0.0.46 and earlier permits unauthorized individuals to bypass the authentication. When a… |
CVE-2017-18756 | High | 8.8 | 2020-04-22 | Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6220 before 1.0.0.32, D6400 before 1.0.0.66, D8500 before 1… |
CVE-2017-18755 | High | 8.8 | 2020-04-22 | Certain NETGEAR devices are affected by CSRF. This affects R6300v2 before 1.0.4.8, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6900 before 1.0.1.22, R7000… |
CVE-2017-18842 | High | 8.8 | 2020-04-20 | Certain NETGEAR devices are affected by CSRF. This affects R7300 before 1.0.0.54, R8500 before 1.0.2.94, DGN2200v1 before 1.0.0.55, and D2200D/D2200DW-1FRNAS b… |
CVE-2019-20753 | High | 8.8 | 2020-04-16 | Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects DGN2200v1 before 1.0.0.58, D8500 before 1.0… |
CVE-2017-6366 | High | 8.8 | 2017-03-15 | Cross-site request forgery (CSRF) vulnerability in NETGEAR DGN2200 routers with firmware 10.0.0.20 through 10.0.0.50 allows remote attackers to hijack the auth… |
CVE-2020-35785 | High | 8.3 | 2020-12-30 | NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication (aka PSV-2020-0363, PSV-2020-0364, and PSV-2020-0365). |
CVE-2017-18777 | High | 7.8 | 2020-04-22 | Certain NETGEAR devices are affected by administrative password disclosure. This affects D6220 before V1.0.0.28, D6400 before V1.0.0.60, D8500 before V1.0.3.29… |
CVE-2016-11059 | High | 7.5 | 2020-04-28 | Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before 2017-01-06, D500 before 2017-01-06, D1500 before… |
CVE-2018-21139 | High | 7.5 | 2020-04-23 | Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D1500 before 1.0.0.27, D500 before 1.0.0.27, D6100 before 1.0.0.58, D… |
CVE-2016-11054 | High | 7.2 | 2020-04-28 | NETGEAR DGN2200v4 devices before 2017-01-06 are affected by command execution and an FTP insecure root directory. |
CVE-2018-21156 | High | 7.2 | 2020-04-27 | Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.38, D6400 before 1.0.0.74, D7000v2 before 1… |
CVE-2018-21163 | High | 7.2 | 2020-04-23 | Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects DGN2200Bv4 before 1.0.0.102, DGN2200v4 before 1.0… |
CVE-2019-20755 | Medium | 6.8 | 2020-04-16 | Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6220 before 1.0.0.46, D6400 before 1.0.0.80, D700… |
CVE-2019-20754 | Medium | 6.8 | 2020-04-16 | Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects DGN2200 before 1.0.0.58, DGN2200B before 1.0.0.58, D8500 befor… |