Netgear : Security Vulnerabilities, CVEs, Published In 2009 (Directory traversal)
Directory traversal vulnerability in cgi-bin/webcm in the administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote attackers to list arbitrary directories via a .. (dot dot) in the nextpage parameter.
Max CVSS
7.8
EPSS Score
0.31%
Published
2009-06-30
Updated
2018-10-10
cgi-bin/welcome/VPN_only in the web interface in Netgear SSL312 allows remote attackers to cause a denial of service (device crash) via a crafted query string, as demonstrated using directory traversal sequences.
Max CVSS
7.8
EPSS Score
2.16%
Published
2009-02-22
Updated
2017-09-29
2 vulnerabilities found