R7000p firmware
This hub aggregates every CVE we track for R7000p firmware, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
156
CVEs tracked
37
Critical
47
High
0
In CISA KEV
Severity distribution
MEDIUM71HIGH47CRITICAL37LOW1
Monthly trend
0
0
0
0
26
1
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
2
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting R7000p firmware.
- CVE-2026-0417Insufficient input validation in certain NETGEAR routers4.5
- CVE-2026-9210Certain NETGEAR routers allow authenticated administrators to gain unintended control of the router4.5
- CVE-2025-12945Improper input validation in NETGEAR Nighthawk router R7000P7.2
- CVE-2024-12988Netgear R6900P/R7000P HTTP Header sub_16C4C buffer overflow7.3
- CVE-2024-52028Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pptp_user_netmask parameter at wiz_pptp.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via ...5.7
- CVE-2024-51019Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pppoe_localnetmask parameter at pppoe.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a ...5.7
- CVE-2024-52029Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pptp_user_netmask parameter at genie_pptp.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) vi...5.7
- CVE-2024-51002Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a stack overflow via the l2tp_user_ip parameter at l2tp.cgi. This vulnerability allow...5.7
- CVE-2024-51013Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the RADIUSAddr%d_wla parameter at wireless.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a...5.7
- CVE-2024-51004Netgear R8500 v1.0.2.160 and R7000P v1.3.3.154 were discovered to multiple stack overflow vulnerabilities in the component usb_device.cgi via the cifs_user, read_access, and write_access parameters...5.7
- CVE-2024-52025Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via the pppoe_localip parameter at geniepppoe.cgi. This vulnerability allows attackers ...5.7
- CVE-2024-51020Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the apn parameter at usbISP_detail_edit.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a cr...5.7
- CVE-2024-51010Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a command injection vulnerability in the component ap_mode.cgi via the apmode_gateway...8.0
- CVE-2024-52024Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via the pppoe_localip parameter at wizpppoe.cgi. This vulnerability allows attackers to...5.7
- CVE-2024-51018Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pptp_user_netmask parameter at pptp.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a cr...5.7
Product normalization is registry-driven with AI assist and human review. How it works