Wndr4700 Firmware

wndr4700_firmware

Vendor: Netgear • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-3074 1Netgear 1Wndr4700 Firmware Nov 21, 2024 Jan 28, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 NetGear WNDR4700 Media Server devices with firmware 1.0.0.34 allow remote attackers to cause a denial of service (device crash).
CVE-2013-3071 1Netgear 1Wndr4700 Firmware Nov 21, 2024 Jan 28, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 NETGEAR Centria WNDR4700 devices with firmware 1.0.0.34 allow authentication bypass.
CVE-2013-3072 1Netgear 1Wndr4700 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An Authentication Bypass vulnerability exists in NETGEAR Centria WNDR4700 Firmware 1.0.0.34 in http://<router_ip>/apply.cgi?/hdd_usr_setup.htm that when visited by any user, authenticated or not, causes the router to no...Show more An Authentication Bypass vulnerability exists in NETGEAR Centria WNDR4700 Firmware 1.0.0.34 in http://<router_ip>/apply.cgi?/hdd_usr_setup.htm that when visited by any user, authenticated or not, causes the router to no longer require a password to access the web administration portal.Show less
CVE-2013-3070 1Netgear 1Wndr4700 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An Information Disclosure vulnerability exists in Netgear WNDR4700 running firmware 1.0.0.34 in the management web interface, which discloses the PSK of the wireless LAN.
CVE-2013-3073 1Netgear 1Wndr4700 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A Symlink Traversal vulnerability exists in NETGEAR Centria WNDR4700 Firmware 1.0.0.34.
CVE-2016-10174 1Netgear 28D6100 Firmware D7000 FirmwareD7800 Firmware+25 more Apr 21, 2026 Jan 30, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated attacker to achieve...Show more The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This buffer overflow can be exploited by an unauthenticated attacker to achieve remote code execution.Show less
CVE-2013-3069 1Netgear 2Wndr4700 Wndr4700 Firmware May 6, 2026 Apr 25, 2014 N/A· v4 N/A· v3 3.5 LOW· v2 Multiple cross-site scripting (XSS) vulnerabilities in NETGEAR WNDR4700 with firmware 1.0.0.34 allow remote authenticated users to inject arbitrary web script or HTML via the (1) UserName or (2) Password to the NAS User...Show more Multiple cross-site scripting (XSS) vulnerabilities in NETGEAR WNDR4700 with firmware 1.0.0.34 allow remote authenticated users to inject arbitrary web script or HTML via the (1) UserName or (2) Password to the NAS User Setup page, (3) deviceName to USB_advanced.htm, or (4) Network Key to the Wireless Setup page.Show less