Netgear Xr1000_firmware

26 CVEs affecting Netgear Xr1000_firmware. Latest disclosed: 2026-06-09. Critical: 10, High: 6.

Top CVEs affecting Netgear Xr1000_firmware
CVESeverityScorePublishedSummary
CVE-2021-45654Critical9.62021-12-26NETGEAR XR1000 devices before 1.0.0.58 are affected by disclosure of sensitive information.
CVE-2021-45622Critical9.62021-12-26Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, EAX20 befo…
CVE-2021-45621Critical9.62021-12-26Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 3.2.18.2, EAX20 bef…
CVE-2021-45620Critical9.62021-12-26Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, EAX20 befo…
CVE-2021-45616Critical9.62021-12-26Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR750 before 3.2.18.2, LAX20 before 1.1.6.28, MK62 befo…
CVE-2021-45614Critical9.62021-12-26Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7000v2 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 bef…
CVE-2021-45613Critical9.62021-12-26Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, D7000v2 be…
CVE-2021-45612Critical9.62021-12-26Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, EAX20 befo…
CVE-2021-45514Critical9.62021-12-26NETGEAR XR1000 devices before 1.0.0.58 are affected by command injection by an unauthenticated attacker.
CVE-2021-45513Critical9.62021-12-26NETGEAR XR1000 devices before 1.0.0.58 are affected by command injection by an unauthenticated attacker.
CVE-2021-34982High8.82024-05-07NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute…
CVE-2024-35517High8.42024-10-11Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_remote_smb_conf.cgi via the share_name parameter.
CVE-2021-45549High8.42021-12-26Certain NETGEAR devices are affected by command injection by an authenticated user. This affects LAX20 before 1.1.6.28, MK62 before 1.1.6.122, MR60 before 1.1…
CVE-2021-45643High8.22021-12-26Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6400v2 before 1.0.4.118, R6700v3 before 1.0.4.118, and XR10…
CVE-2021-45510High8.22021-12-26NETGEAR XR1000 devices before 1.0.0.58 are affected by authentication bypass.
CVE-2026-9213High8.12026-06-09A vulnerability in the affected NETGEAR gaming routers allows attackers with the ability to intercept and tamper with traffic between the router and the Intern…
CVE-2021-34983Medium6.52024-05-07NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent at…
CVE-2021-45519Medium6.52021-12-26NETGEAR XR1000 devices before 1.0.0.58 are affected by denial of service.
CVE-2021-45518Medium6.52021-12-26NETGEAR XR1000 devices before 1.0.0.58 are affected by denial of service.
CVE-2021-45517Medium6.52021-12-26NETGEAR XR1000 devices before 1.0.0.58 are affected by denial of service.