Aircut

**Name of the Vulnerable Software and Affected Versions** NETGEAR CBR40 versions prior to 2.5.0.10 NETGEAR EAX20 versions prior to 1.0.0.48 NETGEAR EAX80 versions prior to 1.0.1.64 NETGEAR EX6120 versions prior to 1.0.0.64 NETGEAR EX6130 versions prior to 1.0.0.44 NETGEAR EX7500 versions prior to 1.0.0.72 NETGEAR R7000 versions prior to 1.0.11.116 NETGEAR R7900 versions prior to 1.0.4.38 NETGEAR R8000 versions prior to 1.0.4.68 NETGEAR RAX200 versions prior to 1.0.3.106 NETGEAR RBS40V versions prior to 2.6.1.4 NETGEAR RBW30 versions prior to 2.6.1.4 NETGEAR EX3700 versions prior to 1.0.0.90 NETGEAR MR60 versions prior to 1.0.6.110 NETGEAR R7000P versions prior to 1.3.2.126 NETGEAR RAX20 versions prior to 1.0.2.82 NETGEAR RAX45 versions prior to 1.0.2.72 NETGEAR RAX80 versions prior to 1.0.3.106 NETGEAR EX3800 versions prior to 1.0.0.90 NETGEAR MS60 versions prior to 1.0.6.110 NETGEAR R6900P versions prior to 1.3.2.126 NETGEAR RAX15 versions prior to 1.0.2.82 NETGEAR RAX50 versions prior to 1.0.2.72 NETGEAR RAX75 versions prior to 1.0.3.106 NETGEAR RBR750 versions prior to 3.2.16.6 NETGEAR RBR850 versions prior to 3.2.16.6 NETGEAR RBS750 versions prior to 3.2.16.6 NETGEAR RBS850 versions prior to 3.2.16.6 NETGEAR RBK752 versions prior to 3.2.16.6 NETGEAR RBK852 versions prior to 3.2.16.6 **Description** The issue is caused by the lack of protection for the web page structure, allowing a remote attacker to impact the confidentiality, integrity, and availability of protected information. This is a stored XSS vulnerability. **Recommendations** Update NETGEAR CBR40 to version 2.5.0.10 or later Update NETGEAR EAX20 to version 1.0.0.48 or later Update NETGEAR EAX80 to version 1.0.1.64 or later Update NETGEAR EX6120 to version 1.0.0.64 or later Update NETGEAR EX6130 to version 1.0.0.44 or later Update NETGEAR EX7500 to version 1.0.0.72 or later Update NETGEAR R7000 to version 1.0.11.116 or later Update NETGEAR R7900 to version 1.0.4.38 or later Update NETGEAR R8000 to version 1.0.4.68 or later Update NETGEAR RAX200 to version 1.0.3.106 or later Update NETGEAR RBS40V to version 2.6.1.4 or later Update NETGEAR RBW30 to version 2.6.1.4 or later Update NETGEAR EX3700 to version 1.0.0.90 or later Update NETGEAR MR60 to version 1.0.6.110 or later Update NETGEAR R7000P to version 1.3.2.126 or later Update NETGEAR RAX20 to version 1.0.2.82 or later Update NETGEAR RAX45 to version 1.0.2.72 or later Update NETGEAR RAX80 to version 1.0.3.106 or later Update NETGEAR EX3800 to version 1.0.0.90 or later Update NETGEAR MS60 to version 1.0.6.110 or later Update NETGEAR R6900P to version 1.3.2.126 or later Update NETGEAR RAX15 to version 1.0.2.82 or later Update NETGEAR RAX50 to version 1.0.2.72 or later Update NETGEAR RAX75 to version 1.0.3.106 or later Update NETGEAR RBR750 to version 3.2.16.6 or later Update NETGEAR RBR850 to version 3.2.16.6 or later Update NETGEAR RBS750 to version 3.2.16.6 or later Update NETGEAR RBS850 to version 3.2.16.6 or later Update NETGEAR RBK752 to version 3.2.16.6 or later Update NETGEAR RBK852 to version 3.2.16.6 or later

**Name of the Vulnerable Software and Affected Versions** NETGEAR CBR40 versions prior to 2.5.0.10 NETGEAR EAX80 versions prior to 1.0.1.62 NETGEAR EX7500 versions prior to 1.0.0.72 NETGEAR R7900 versions prior to 1.0.4.38 NETGEAR R8000 versions prior to 1.0.4.68 NETGEAR RAX200 versions prior to 1.0.4.120 NETGEAR RBS40V versions prior to 2.6.1.4 NETGEAR RBW30 versions prior to 2.6.1.4 NETGEAR MR60 versions prior to 1.0.6.110 NETGEAR RAX20 versions prior to 1.0.2.82 NETGEAR RAX45 versions prior to 1.0.2.72 NETGEAR RAX80 versions prior to 1.0.4.120 NETGEAR MS60 versions prior to 1.0.6.110 NETGEAR RAX15 versions prior to 1.0.2.82 NETGEAR RAX50 versions prior to 1.0.2.72 NETGEAR RAX75 versions prior to 1.0.4.120 NETGEAR RBR750 versions prior to 3.2.16.6 NETGEAR RBR850 versions prior to 3.2.16.6 NETGEAR RBS750 versions prior to 3.2.16.6 NETGEAR RBS850 versions prior to 3.2.16.6 NETGEAR RBK752 versions prior to 3.2.16.6 NETGEAR RBK852 versions prior to 3.2.16.6 **Description** The issue is related to stored XSS, which can allow a remote attacker to perform cross-site scripting attacks due to inadequate protection of the web page structure. **Recommendations** As a temporary workaround, consider disabling access to the web interface until a patch is available for the following versions: NETGEAR CBR40 version prior to 2.5.0.10: Update to version 2.5.0.10 or later. NETGEAR EAX80 version prior to 1.0.1.62: Update to version 1.0.1.62 or later. NETGEAR EX7500 version prior to 1.0.0.72: Update to version 1.0.0.72 or later. NETGEAR R7900 version prior to 1.0.4.38: Update to version 1.0.4.38 or later. NETGEAR R8000 version prior to 1.0.4.68: Update to version 1.0.4.68 or later. NETGEAR RAX200 version prior to 1.0.4.120: Update to version 1.0.4.120 or later. NETGEAR RBS40V version prior to 2.6.1.4: Update to version 2.6.1.4 or later. NETGEAR RBW30 version prior to 2.6.1.4: Update to version 2.6.1.4 or later. NETGEAR MR60 version prior to 1.0.6.110: Update to version 1.0.6.110 or later. NETGEAR RAX20 version prior to 1.0.2.82: Update to version 1.0.2.82 or later. NETGEAR RAX45 version prior to 1.0.2.72: Update to version 1.0.2.72 or later. NETGEAR RAX80 version prior to 1.0.4.120: Update to version 1.0.4.120 or later. NETGEAR MS60 version prior to 1.0.6.110: Update to version 1.0.6.110 or later. NETGEAR RAX15 version prior to 1.0.2.82: Update to version 1.0.2.82 or later. NETGEAR RAX50 version prior to 1.0.2.72: Update to version 1.0.2.72 or later. NETGEAR RAX75 version prior to 1.0.4.120: Update to version 1.0.4.120 or later. NETGEAR RBR750 version prior to 3.2.16.6: Update to version 3.2.16.6 or later. NETGEAR RBR850 version prior to 3.2.16.6: Update to version 3.2.16.6 or later. NETGEAR RBS750 version prior to 3.2.16.6: Update to version 3.2.16.6 or later. NETGEAR RBS850 version prior to 3.2.16.6: Update to version 3.2.16.6 or later. NETGEAR RBK752 version prior to 3.2.16.6: Update to version 3.2.16.6 or later. NETGEAR RBK852 version prior to 3.2.16.6: Update to version 3.2.16.6 or later.

**Name of the Vulnerable Software and Affected Versions** NETGEAR CBR40 versions prior to 2.5.0.10 NETGEAR EAX20 versions prior to 1.0.0.48 NETGEAR EAX80 versions prior to 1.0.1.64 NETGEAR EX6120 versions prior to 1.0.0.64 NETGEAR EX6130 versions prior to 1.0.0.44 NETGEAR EX7500 versions prior to 1.0.0.72 NETGEAR R7960P versions prior to 1.4.1.66 NETGEAR RAX200 versions prior to 1.0.3.106 NETGEAR RBS40V versions prior to 2.6.1.4 NETGEAR RBW30 versions prior to 2.6.1.4 NETGEAR EX3700 versions prior to 1.0.0.90 NETGEAR MR60 versions prior to 1.0.6.110 NETGEAR R8000P versions prior to 1.4.1.66 NETGEAR RAX20 versions prior to 1.0.2.82 NETGEAR RAX45 versions prior to 1.0.2.72 NETGEAR RAX80 versions prior to 1.0.3.106 NETGEAR EX3800 versions prior to 1.0.0.90 NETGEAR MS60 versions prior to 1.0.6.110 NETGEAR R7900P versions prior to 1.4.1.66 NETGEAR RAX15 versions prior to 1.0.2.82 NETGEAR RAX50 versions prior to 1.0.2.72 NETGEAR RAX75 versions prior to 1.0.3.106 NETGEAR RBR750 versions prior to 3.2.16.6 NETGEAR RBR850 versions prior to 3.2.16.6 NETGEAR RBS750 versions prior to 3.2.16.6 NETGEAR RBS850 versions prior to 3.2.16.6 NETGEAR RBK752 versions prior to 3.2.16.6 NETGEAR RBK852 versions prior to 3.2.16.6 **Description** The issue is caused by a lack of protection for the web page structure, allowing a remote attacker to impact the confidentiality, integrity, and availability of protected information. This is a stored XSS issue. **Recommendations** Update CBR40 to version 2.5.0.10 or later Update EAX20 to version 1.0.0.48 or later Update EAX80 to version 1.0.1.64 or later Update EX6120 to version 1.0.0.64 or later Update EX6130 to version 1.0.0.44 or later Update EX7500 to version 1.0.0.72 or later Update R7960P to version 1.4.1.66 or later Update RAX200 to version 1.0.3.106 or later Update RBS40V to version 2.6.1.4 or later Update RBW30 to version 2.6.1.4 or later Update EX3700 to version 1.0.0.90 or later Update MR60 to version 1.0.6.110 or later Update R8000P to version 1.4.1.66 or later Update RAX20 to version 1.0.2.82 or later Update RAX45 to version 1.0.2.72 or later Update RAX80 to version 1.0.3.106 or later Update EX3800 to version 1.0.0.90 or later Update MS60 to version 1.0.6.110 or later Update R7900P to version 1.4.1.66 or later Update RAX15 to version 1.0.2.82 or later Update RAX50 to version 1.0.2.72 or later Update RAX75 to version 1.0.3.106 or later Update RBR750 to version 3.2.16.6 or later Update RBR850 to version 3.2.16.6 or later Update RBS750 to version 3.2.16.6 or later Update RBS850 to version 3.2.16.6 or later Update RBK752 to version 3.2.16.6 or later Update RBK852 to version 3.2.16.6 or later

**Name of the Vulnerable Software and Affected Versions** NETGEAR D6200 versions before 1.1.00.38 NETGEAR D7000 versions before 1.0.1.78 NETGEAR R6020 versions before 1.0.0.48 NETGEAR R6080 versions before 1.0.0.48 NETGEAR R6050 versions before 1.0.1.26 NETGEAR JR6150 versions before 1.0.1.26 NETGEAR R6120 versions before 1.0.0.66 NETGEAR R6220 versions before 1.1.0.100 NETGEAR R6230 versions before 1.1.0.100 NETGEAR R6260 versions before 1.1.0.78 NETGEAR R6800 versions before 1.2.0.76 NETGEAR R6900v2 versions before 1.2.0.76 NETGEAR R6700v2 versions before 1.2.0.76 NETGEAR R7450 versions before 1.2.0.76 NETGEAR AC2100 versions before 1.2.0.76 NETGEAR AC2400 versions before 1.2.0.76 NETGEAR AC2600 versions before 1.2.0.76 NETGEAR RBK40 versions before 2.5.1.16 NETGEAR RBR40 versions before 2.5.1.16 NETGEAR RBS40 versions before 2.5.1.16 NETGEAR RBK20 versions before 2.5.1.16 NETGEAR RBR20 versions before 2.5.1.16 NETGEAR RBS20 versions before 2.5.1.16 NETGEAR RBK50 versions before 2.5.1.16 NETGEAR RBR50 versions before 2.5.1.16 NETGEAR RBS50 versions before 2.5.1.16 NETGEAR RBS50Y versions before 2.6.1.40 **Description** The issue is related to incorrect management of code generation, which can allow an attacker to perform a server-side injection attack. This type of attack can be executed through vulnerable API endpoints, although specific endpoint details are not provided. The vulnerability is associated with the `Server Side Include Injection (SSI)` attack type. **Recommendations** Update NETGEAR D6200 to version 1.1.00.38 or later Update NETGEAR D7000 to version 1.0.1.78 or later Update NETGEAR R6020 to version 1.0.0.48 or later Update NETGEAR R6080 to version 1.0.0.48 or later Update NETGEAR R6050 to version 1.0.1.26 or later Update NETGEAR JR6150 to version 1.0.1.26 or later Update NETGEAR R6120 to version 1.0.0.66 or later Update NETGEAR R6220 to version 1.1.0.100 or later Update NETGEAR R6230 to version 1.1.0.100 or later Update NETGEAR R6260 to version 1.1.0.78 or later Update NETGEAR R6800 to version 1.2.0.76 or later Update NETGEAR R6900v2 to version 1.2.0.76 or later Update NETGEAR R6700v2 to version 1.2.0.76 or later Update NETGEAR R7450 to version 1.2.0.76 or later Update NETGEAR AC2100 to version 1.2.0.76 or later Update NETGEAR AC2400 to version 1.2.0.76 or later Update NETGEAR AC2600 to version 1.2.0.76 or later Update NETGEAR RBK40 to version 2.5.1.16 or later Update NETGEAR RBR40 to version 2.5.1.16 or later Update NETGEAR RBS40 to version 2.5.1.16 or later Update NETGEAR RBK20 to version 2.5.1.16 or later Update NETGEAR RBR20 to version 2.5.1.16 or later Update NETGEAR RBS20 to version 2.5.1.16 or later Update NETGEAR RBK50 to version 2.5.1.16 or later Update NETGEAR RBR50 to version 2.5.1.16 or later Update NETGEAR RBS50 to version 2.5.1.16 or later Update NETGEAR RBS50Y to version 2.6.1.40 or later

**Name of the Vulnerable Software and Affected Versions** NETGEAR D6200 versions prior to 1.1.00.38 NETGEAR D7000 versions prior to 1.0.1.78 NETGEAR R6020 versions prior to 1.0.0.48 NETGEAR R6080 versions prior to 1.0.0.48 NETGEAR R6050 versions prior to 1.0.1.26 NETGEAR JR6150 versions prior to 1.0.1.26 NETGEAR R6120 versions prior to 1.0.0.66 NETGEAR R6220 versions prior to 1.1.0.100 NETGEAR R6230 versions prior to 1.1.0.100 NETGEAR R6260 versions prior to 1.1.0.78 NETGEAR R6800 versions prior to 1.2.0.76 NETGEAR R6900v2 versions prior to 1.2.0.76 NETGEAR R6700v2 versions prior to 1.2.0.76 NETGEAR R7450 versions prior to 1.2.0.76 NETGEAR AC2100 versions prior to 1.2.0.76 NETGEAR AC2400 versions prior to 1.2.0.76 NETGEAR AC2600 versions prior to 1.2.0.76 NETGEAR RBK40 versions prior to 2.5.1.16 NETGEAR RBR40 versions prior to 2.5.1.16 NETGEAR RBS40 versions prior to 2.5.1.16 NETGEAR RBK20 versions prior to 2.5.1.16 NETGEAR RBR20 versions prior to 2.5.1.16 NETGEAR RBS20 versions prior to 2.5.1.16 NETGEAR RBK50 versions prior to 2.5.1.16 NETGEAR RBR50 versions prior to 2.5.1.16 NETGEAR RBS50 versions prior to 2.5.1.16 NETGEAR RBS50Y versions prior to 2.6.1.40 NETGEAR WNR2020 versions prior to 1.1.0.62 **Description** The issue is related to incorrect management of code generation, which can lead to a server-side injection attack. This type of attack allows an attacker to inject malicious code into a server, potentially leading to unauthorized access or data manipulation. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For NETGEAR D6200 versions prior to 1.1.00.38, update to version 1.1.00.38 or later. For NETGEAR D7000 versions prior to 1.0.1.78, update to version 1.0.1.78 or later. For NETGEAR R6020 versions prior to 1.0.0.48, update to version 1.0.0.48 or later. For NETGEAR R6080 versions prior to 1.0.0.48, update to version 1.0.0.48 or later. For NETGEAR R6050 versions prior to 1.0.1.26, update to version 1.0.1.26 or later. For NETGEAR JR6150 versions prior to 1.0.1.26, update to version 1.0.1.26 or later. For NETGEAR R6120 versions prior to 1.0.0.66, update to version 1.0.0.66 or later. For NETGEAR R6220 versions prior to 1.1.0.100, update to version 1.1.0.100 or later. For NETGEAR R6230 versions prior to 1.1.0.100, update to version 1.1.0.100 or later. For NETGEAR R6260 versions prior to 1.1.0.78, update to version 1.1.0.78 or later. For NETGEAR R6800 versions prior to 1.2.0.76, update to version 1.2.0.76 or later. For NETGEAR R6900v2 versions prior to 1.2.0.76, update to version 1.2.0.76 or later. For NETGEAR R6700v2 versions prior to 1.2.0.76, update to version 1.2.0.76 or later. For NETGEAR R7450 versions prior to 1.2.0.76, update to version 1.2.0.76 or later. For NETGEAR AC2100 versions prior to 1.2.0.76, update to version 1.2.0.76 or later. For NETGEAR AC2400 versions prior to 1.2.0.76, update to version 1.2.0.76 or later. For NETGEAR AC2600 versions prior to 1.2.0.76, update to version 1.2.0.76 or later. For NETGEAR RBK40 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBR40 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBS40 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBK20 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBR20 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBS20 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBK50 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBR50 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBS50 versions prior to 2.5.1.16, update to version 2.5.1.16 or later. For NETGEAR RBS50Y versions prior to 2.6.1.40, update to version 2.6.1.40 or later. For NETGEAR WNR2020 versions prior to 1.1.0.62, update to version 1.1.0.62 or later.

**Name of the Vulnerable Software and Affected Versions** NETGEAR RBK20 versions prior to 2.6.1.36 NETGEAR RBR20 versions prior to 2.6.1.36 NETGEAR RBS20 versions prior to 2.6.1.38 NETGEAR RBK40 versions prior to 2.6.1.36 NETGEAR RBR40 versions prior to 2.6.1.36 NETGEAR RBS40 versions prior to 2.6.1.38 NETGEAR RBK50 versions prior to 2.6.1.40 NETGEAR RBR50 versions prior to 2.6.1.40 NETGEAR RBS50 versions prior to 2.6.1.40 NETGEAR RBS50Y versions prior to 2.6.1.40 **Description** The issue is related to command injection by an unauthenticated attacker due to a lack of input data sanitization in the embedded software of NETGEAR Wi-Fi routers. This allows a remote attacker to execute arbitrary commands. **Recommendations** For NETGEAR RBK20 versions prior to 2.6.1.36, update to version 2.6.1.36 or later. For NETGEAR RBR20 versions prior to 2.6.1.36, update to version 2.6.1.36 or later. For NETGEAR RBS20 versions prior to 2.6.1.38, update to version 2.6.1.38 or later. For NETGEAR RBK40 versions prior to 2.6.1.36, update to version 2.6.1.36 or later. For NETGEAR RBR40 versions prior to 2.6.1.36, update to version 2.6.1.36 or later. For NETGEAR RBS40 versions prior to 2.6.1.38, update to version 2.6.1.38 or later. For NETGEAR RBK50 versions prior to 2.6.1.40, update to version 2.6.1.40 or later. For NETGEAR RBR50 versions prior to 2.6.1.40, update to version 2.6.1.40 or later. For NETGEAR RBS50 versions prior to 2.6.1.40, update to version 2.6.1.40 or later. For NETGEAR RBS50Y versions prior to 2.6.1.40, update to version 2.6.1.40 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions 1.0.1.58 and earlier DM200 versions 1.0.0.66 and earlier EX2700 versions 1.0.1.56 and earlier EX6150v2 versions 1.0.1.86 and earlier EX6100v2 versions 1.0.1.86 and earlier EX6200v2 versions 1.0.1.78 and earlier EX6250 versions 1.0.0.110 and earlier EX6410 versions 1.0.0.110 and earlier EX6420 versions 1.0.0.110 and earlier EX6400v2 versions 1.0.0.110 and earlier EX7300 versions 1.0.2.144 and earlier EX6400 versions 1.0.2.144 and earlier EX7320 versions 1.0.0.110 and earlier EX7300v2 versions 1.0.0.110 and earlier R7500v2 versions 1.0.3.48 and earlier R7800 versions 1.0.2.68 and earlier R8900 versions 1.0.5.2 and earlier R9000 versions 1.0.5.2 and earlier RAX120 versions 1.0.1.90 and earlier RBK40 versions 2.5.1.16 and earlier RBK20 versions 2.5.1.16 and earlier RBR20 versions 2.5.1.16 and earlier RBS20 versions 2.5.1.16 and earlier RBK50 versions 2.5.1.16 and earlier RBR50 versions 2.5.1.16 and earlier RBS50 versions 2.5.1.16 and earlier RBS50Y versions 2.6.1.40 and earlier WN3000RPv2 versions 1.0.0.78 and earlier WN3000RPv3 versions 1.0.2.80 and earlier WNR2000v5 versions 1.0.0.72 and earlier XR500 versions 2.3.2.56 and earlier XR700 versions 1.0.1.20 and earlier **Description** The issue is related to server-side injection, which can be exploited due to insufficient cleaning of special elements in output used by an incoming component. This may allow an attacker to perform a server-side include injection attack. **Recommendations** For D7800 version 1.0.1.58 and earlier, update to version 1.0.1.58 or later. For DM200 version 1.0.0.66 and earlier, update to version 1.0.0.66 or later. For EX2700 version 1.0.1.56 and earlier, update to version 1.0.1.56 or later. For EX6150v2 version 1.0.1.86 and earlier, update to version 1.0.1.86 or later. For EX6100v2 version 1.0.1.86 and earlier, update to version 1.0.1.86 or later. For EX6200v2 version 1.0.1.78 and earlier, update to version 1.0.1.78 or later. For EX6250 version 1.0.0.110 and earlier, update to version 1.0.0.110 or later. For EX6410 version 1.0.0.110 and earlier, update to version 1.0.0.110 or later. For EX6420 version 1.0.0.110 and earlier, update to version 1.0.0.110 or later. For EX6400v2 version 1.0.0.110 and earlier, update to version 1.0.0.110 or later. For EX7300 version 1.0.2.144 and earlier, update to version 1.0.2.144 or later. For EX6400 version 1.0.2.144 and earlier, update to version 1.0.2.144 or later. For EX7320 version 1.0.0.110 and earlier, update to version 1.0.0.110 or later. For EX7300v2 version 1.0.0.110 and earlier, update to version 1.0.0.110 or later. For R7500v2 version 1.0.3.48 and earlier, update to version 1.0.3.48 or later. For R7800 version 1.0.2.68 and earlier, update to version 1.0.2.68 or later. For R8900 version 1.0.5.2 and earlier, update to version 1.0.5.2 or later. For R9000 version 1.0.5.2 and earlier, update to version 1.0.5.2 or later. For RAX120 version 1.0.1.90 and earlier, update to version 1.0.1.90 or later. For RBK40 version 2.5.1.16 and earlier, update to version 2.5.1.16 or later. For RBK20 version 2.5.1.16 and earlier, update to version 2.5.1.16 or later. For RBR20 version 2.5.1.16 and earlier, update to version 2.5.1.16 or later. For RBS20 version 2.5.1.16 and earlier, update to version 2.5.1.16 or later. For RBK50 version 2.5.1.16 and earlier, update to version 2.5.1.16 or later. For RBR50 version 2.5.1.16 and earlier, update to version 2.5.1.16 or later. For RBS50 version 2.5.1.16 and earlier, update to version 2.5.1.16 or later. For RBS50Y version 2.6.1.40 and earlier, update to version 2.6.1.40 or later. For WN3000RPv2 version 1.0.0.78 and earlier, update to version 1.0.0.78 or later. For WN3000RPv3 version 1.0.2.80 and earlier, update to version 1.0.2.80 or later. For WNR2000v5 version 1.0.0.72 and earlier, update to version 1.0.0.72 or later. For XR500 version 2.3.2.56 and earlier, update to version 2.3.2.56 or later. For XR700 version 1.0.1.20 and earlier, update to version 1.0.1.20 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 R7800 versions prior to 1.0.2.74 R8900 versions prior to 1.0.4.28 R9000 versions prior to 1.0.4.28 XR500 versions prior to 2.3.2.56 XR700 versions prior to 1.0.1.10 RAX120 versions prior to 1.0.0.78 **Description** Certain NETGEAR devices are affected by stored XSS. **Recommendations** For D7800 versions prior to 1.0.1.56, update to version 1.0.1.56 or later. For RBK50 versions prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBR50 versions prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBS50 versions prior to 2.3.5.30, update to version 2.3.5.30 or later. For R7800 versions prior to 1.0.2.74, update to version 1.0.2.74 or later. For R8900 versions prior to 1.0.4.28, update to version 1.0.4.28 or later. For R9000 versions prior to 1.0.4.28, update to version 1.0.4.28 or later. For XR500 versions prior to 2.3.2.56, update to version 2.3.2.56 or later. For XR700 versions prior to 1.0.1.10, update to version 1.0.1.10 or later. For RAX120 versions prior to 1.0.0.78, update to version 1.0.0.78 or later.

**Name of the Vulnerable Software and Affected Versions** NETGEAR D7800 versions prior to 1.0.1.56 NETGEAR R7500v2 versions prior to 1.0.3.46 NETGEAR R7800 versions prior to 1.0.2.74 NETGEAR R8900 versions prior to 1.0.4.28 NETGEAR R9000 versions prior to 1.0.4.28 NETGEAR RAX120 versions prior to 1.0.0.78 NETGEAR RBK50 versions prior to 2.3.5.30 NETGEAR RBR50 versions prior to 2.3.5.30 NETGEAR RBS50 versions prior to 2.3.5.30 NETGEAR XR500 versions prior to 2.3.2.56 NETGEAR XR700 versions prior to 1.0.1.10 **Description** The issue is related to stored XSS, which affects certain NETGEAR devices. **Recommendations** For NETGEAR D7800 version prior to 1.0.1.56, update to version 1.0.1.56 or later. For NETGEAR R7500v2 version prior to 1.0.3.46, update to version 1.0.3.46 or later. For NETGEAR R7800 version prior to 1.0.2.74, update to version 1.0.2.74 or later. For NETGEAR R8900 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For NETGEAR R9000 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For NETGEAR RAX120 version prior to 1.0.0.78, update to version 1.0.0.78 or later. For NETGEAR RBK50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR RBR50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR RBS50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR XR500 version prior to 2.3.2.56, update to version 2.3.2.56 or later. For NETGEAR XR700 version prior to 1.0.1.10, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions 1.0.1.56 and earlier RBK20 versions 2.3.5.26 and earlier RBR20 versions 2.3.5.26 and earlier RBS20 versions 2.3.5.26 and earlier RBK40 versions 2.3.5.30 and earlier RBR40 versions 2.3.5.30 and earlier RBS40 versions 2.3.5.30 and earlier RBK50 versions 2.3.5.30 and earlier RBR50 versions 2.3.5.30 and earlier RBS50 versions 2.3.5.30 and earlier R7800 versions 1.0.2.74 and earlier R8900 versions 1.0.4.28 and earlier R9000 versions 1.0.4.28 and earlier XR500 versions 2.3.2.56 and earlier XR700 versions 1.0.1.10 and earlier RAX120 versions 1.0.0.78 and earlier R7500v2 versions 1.0.3.46 and earlier **Description** The issue is related to stored XSS, affecting various NETGEAR devices. **Recommendations** For D7800 version 1.0.1.56 and earlier, update to version 1.0.1.56 or later. For RBK20 version 2.3.5.26 and earlier, update to version 2.3.5.26 or later. For RBR20 version 2.3.5.26 and earlier, update to version 2.3.5.26 or later. For RBS20 version 2.3.5.26 and earlier, update to version 2.3.5.26 or later. For RBK40 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBR40 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBS40 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBK50 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBR50 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBS50 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For R7800 version 1.0.2.74 and earlier, update to version 1.0.2.74 or later. For R8900 version 1.0.4.28 and earlier, update to version 1.0.4.28 or later. For R9000 version 1.0.4.28 and earlier, update to version 1.0.4.28 or later. For XR500 version 2.3.2.56 and earlier, update to version 2.3.2.56 or later. For XR700 version 1.0.1.10 and earlier, update to version 1.0.1.10 or later. For RAX120 version 1.0.0.78 and earlier, update to version 1.0.0.78 or later. For R7500v2 version 1.0.3.46 and earlier, update to version 1.0.3.46 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 R7800 versions prior to 1.0.2.74 R8900 version 1.0.4.28 and earlier R9000 version 1.0.4.28 and earlier RAX120 versions prior to 1.0.0.78 RBK20 versions prior to 2.3.5.26 RBR20 versions prior to 2.3.5.26 RBS20 versions prior to 2.3.5.26 RBK40 versions prior to 2.3.5.30 RBR40 versions prior to 2.3.5.30 RBS40 versions prior to 2.3.5.30 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 XR700 versions prior to 1.0.1.10 **Description** The issue is related to stored XSS, affecting certain NETGEAR devices. **Recommendations** For D7800, update to version 1.0.1.56 or later. For R7800, update to version 1.0.2.74 or later. For R8900, update to version 1.0.4.28 or later. For R9000, update to version 1.0.4.28 or later. For RAX120, update to version 1.0.0.78 or later. For RBK20, update to version 2.3.5.26 or later. For RBR20, update to version 2.3.5.26 or later. For RBS20, update to version 2.3.5.26 or later. For RBK40, update to version 2.3.5.30 or later. For RBR40, update to version 2.3.5.30 or later. For RBS40, update to version 2.3.5.30 or later. For RBK50, update to version 2.3.5.30 or later. For RBR50, update to version 2.3.5.30 or later. For RBS50, update to version 2.3.5.30 or later. For XR700, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 R7500v2 versions prior to 1.0.3.46 R7800 versions prior to 1.0.2.74 R8900 versions prior to 1.0.4.28 R9000 versions prior to 1.0.4.28 RAX120 versions prior to 1.0.0.78 RBK20 versions prior to 2.3.5.26 RBR20 versions prior to 2.3.5.26 RBS20 versions prior to 2.3.5.26 RBK40 versions prior to 2.3.5.30 RBR40 versions prior to 2.3.5.30 RBS40 versions prior to 2.3.5.30 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 XR500 versions prior to 2.3.2.56 XR700 versions prior to 1.0.1.10 **Description** Certain NETGEAR devices are affected by stored XSS. **Recommendations** For D7800, update to version 1.0.1.56 or later. For R7500v2, update to version 1.0.3.46 or later. For R7800, update to version 1.0.2.74 or later. For R8900, update to version 1.0.4.28 or later. For R9000, update to version 1.0.4.28 or later. For RAX120, update to version 1.0.0.78 or later. For RBK20, update to version 2.3.5.26 or later. For RBR20, update to version 2.3.5.26 or later. For RBS20, update to version 2.3.5.26 or later. For RBK40, update to version 2.3.5.30 or later. For RBR40, update to version 2.3.5.30 or later. For RBS40, update to version 2.3.5.30 or later. For RBK50, update to version 2.3.5.30 or later. For RBR50, update to version 2.3.5.30 or later. For RBS50, update to version 2.3.5.30 or later. For XR500, update to version 2.3.2.56 or later. For XR700, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 R7500v2 versions prior to 1.0.3.46 R7800 versions prior to 1.0.2.74 R8900 versions prior to 1.0.4.28 R9000 versions prior to 1.0.4.28 RAX120 versions prior to 1.0.0.78 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 XR500 versions prior to 2.3.2.56 XR700 versions prior to 1.0.1.10 **Description** Certain NETGEAR devices are affected by stored XSS. **Recommendations** For D7800, update to version 1.0.1.56 or later. For R7500v2, update to version 1.0.3.46 or later. For R7800, update to version 1.0.2.74 or later. For R8900, update to version 1.0.4.28 or later. For R9000, update to version 1.0.4.28 or later. For RAX120, update to version 1.0.0.78 or later. For RBK50, update to version 2.3.5.30 or later. For RBR50, update to version 2.3.5.30 or later. For RBS50, update to version 2.3.5.30 or later. For XR500, update to version 2.3.2.56 or later. For XR700, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** NETGEAR D7800 versions prior to 1.0.1.56 NETGEAR R7500v2 versions prior to 1.0.3.46 NETGEAR R7800 versions prior to 1.0.2.74 NETGEAR R8900 versions prior to 1.0.4.28 NETGEAR R9000 versions prior to 1.0.4.28 NETGEAR RAX120 versions prior to 1.0.0.78 NETGEAR RBK50 versions prior to 2.3.5.30 NETGEAR RBR50 versions prior to 2.3.5.30 NETGEAR RBS50 versions prior to 2.3.5.30 NETGEAR XR500 versions prior to 2.3.2.56 NETGEAR XR700 versions prior to 1.0.1.10 **Description** The issue is related to stored XSS, which affects certain NETGEAR devices. **Recommendations** For NETGEAR D7800 version prior to 1.0.1.56, update to version 1.0.1.56 or later. For NETGEAR R7500v2 version prior to 1.0.3.46, update to version 1.0.3.46 or later. For NETGEAR R7800 version prior to 1.0.2.74, update to version 1.0.2.74 or later. For NETGEAR R8900 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For NETGEAR R9000 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For NETGEAR RAX120 version prior to 1.0.0.78, update to version 1.0.0.78 or later. For NETGEAR RBK50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR RBR50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR RBS50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR XR500 version prior to 2.3.2.56, update to version 2.3.2.56 or later. For NETGEAR XR700 version prior to 1.0.1.10, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 R7500v2 versions prior to 1.0.3.46 R7800 versions prior to 1.0.2.74 R8900 versions prior to 1.0.4.28 R9000 versions prior to 1.0.4.28 RAX120 versions prior to 1.0.0.78 RBK20 versions prior to 2.3.5.26 RBR20 versions prior to 2.3.5.26 RBS20 versions prior to 2.3.5.26 RBK40 versions prior to 2.3.5.30 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 XR500 versions prior to 2.3.2.56 XR700 versions prior to 1.0.1.10 **Description** The issue is related to stored XSS, affecting certain NETGEAR devices. **Recommendations** For D7800, update to version 1.0.1.56 or later. For R7500v2, update to version 1.0.3.46 or later. For R7800, update to version 1.0.2.74 or later. For R8900, update to version 1.0.4.28 or later. For R9000, update to version 1.0.4.28 or later. For RAX120, update to version 1.0.0.78 or later. For RBK20, update to version 2.3.5.26 or later. For RBR20, update to version 2.3.5.26 or later. For RBS20, update to version 2.3.5.26 or later. For RBK40, update to version 2.3.5.30 or later. For RBK50, update to version 2.3.5.30 or later. For RBR50, update to version 2.3.5.30 or later. For RBS50, update to version 2.3.5.30 or later. For XR500, update to version 2.3.2.56 or later. For XR700, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 R7800 versions prior to 1.0.2.74 R8900 version 1.0.4.28 and earlier R9000 version 1.0.4.28 and earlier RAX120 versions prior to 1.0.0.78 RBK20 versions prior to 2.3.5.26 RBR20 versions prior to 2.3.5.26 RBS20 versions prior to 2.3.5.26 RBK40 versions prior to 2.3.5.30 RBR40 versions prior to 2.3.5.30 RBS40 versions prior to 2.3.5.30 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 XR500 versions prior to 2.3.2.56 XR700 versions prior to 1.0.1.10 **Description** Certain NETGEAR devices are affected by stored XSS. **Recommendations** For D7800, update to version 1.0.1.56 or later. For R7800, update to version 1.0.2.74 or later. For R8900, update to version 1.0.4.28 or later. For R9000, update to version 1.0.4.28 or later. For RAX120, update to version 1.0.0.78 or later. For RBK20, update to version 2.3.5.26 or later. For RBR20, update to version 2.3.5.26 or later. For RBS20, update to version 2.3.5.26 or later. For RBK40, update to version 2.3.5.30 or later. For RBR40, update to version 2.3.5.30 or later. For RBS40, update to version 2.3.5.30 or later. For RBK50, update to version 2.3.5.30 or later. For RBR50, update to version 2.3.5.30 or later. For RBS50, update to version 2.3.5.30 or later. For XR500, update to version 2.3.2.56 or later. For XR700, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions 1.0.1.56 and earlier R7500v2 versions 1.0.3.46 and earlier R7800 versions 1.0.2.74 and earlier R8900 versions 1.0.4.28 and earlier R9000 versions 1.0.4.28 and earlier RAX120 versions 1.0.0.78 and earlier RBK20 versions 2.3.5.26 and earlier RBR20 versions 2.3.5.26 and earlier RBS20 versions 2.3.5.26 and earlier RBK40 versions 2.3.5.30 and earlier RBR40 versions 2.3.5.30 and earlier RBS40 versions 2.3.5.30 and earlier RBK50 versions 2.3.5.30 and earlier RBR50 versions 2.3.5.30 and earlier RBS50 versions 2.3.5.30 and earlier XR500 versions 2.3.2.56 and earlier XR700 versions 1.0.1.10 and earlier **Description** The issue is related to stored XSS, affecting certain NETGEAR devices. **Recommendations** For D7800 version 1.0.1.56 and earlier, update to version 1.0.1.56 or later. For R7500v2 version 1.0.3.46 and earlier, update to version 1.0.3.46 or later. For R7800 version 1.0.2.74 and earlier, update to version 1.0.2.74 or later. For R8900 version 1.0.4.28 and earlier, update to version 1.0.4.28 or later. For R9000 version 1.0.4.28 and earlier, update to version 1.0.4.28 or later. For RAX120 version 1.0.0.78 and earlier, update to version 1.0.0.78 or later. For RBK20 version 2.3.5.26 and earlier, update to version 2.3.5.26 or later. For RBR20 version 2.3.5.26 and earlier, update to version 2.3.5.26 or later. For RBS20 version 2.3.5.26 and earlier, update to version 2.3.5.26 or later. For RBK40 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBR40 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBS40 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBK50 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBR50 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For RBS50 version 2.3.5.30 and earlier, update to version 2.3.5.30 or later. For XR500 version 2.3.2.56 and earlier, update to version 2.3.2.56 or later. For XR700 version 1.0.1.10 and earlier, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 R7500v2 versions prior to 1.0.3.46 R7800 versions prior to 1.0.2.74 R8900 version 1.0.4.28 R9000 version 1.0.4.28 RAX120 versions prior to 1.0.0.78 RBK40 versions prior to 2.3.5.30 RBR40 versions prior to 2.3.5.30 RBS40 versions prior to 2.3.5.30 RBK20 versions prior to 2.3.5.26 RBR20 versions prior to 2.3.5.26 RBS20 versions prior to 2.3.5.26 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 XR500 versions prior to 2.3.2.56 XR700 versions prior to 1.0.1.10 **Description** Certain NETGEAR devices are affected by stored XSS. **Recommendations** For D7800, update to version 1.0.1.56 or later. For R7500v2, update to version 1.0.3.46 or later. For R7800, update to version 1.0.2.74 or later. For R8900, update to version 1.0.4.28 or later. For R9000, update to version 1.0.4.28 or later. For RAX120, update to version 1.0.0.78 or later. For RBK40, update to version 2.3.5.30 or later. For RBR40, update to version 2.3.5.30 or later. For RBS40, update to version 2.3.5.30 or later. For RBK20, update to version 2.3.5.26 or later. For RBR20, update to version 2.3.5.26 or later. For RBS20, update to version 2.3.5.26 or later. For RBK50, update to version 2.3.5.30 or later. For RBR50, update to version 2.3.5.30 or later. For RBS50, update to version 2.3.5.30 or later. For XR500, update to version 2.3.2.56 or later. For XR700, update to version 1.0.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** D7800 versions prior to 1.0.1.56 RBK50 versions prior to 2.3.5.30 RBR50 versions prior to 2.3.5.30 RBS50 versions prior to 2.3.5.30 RBK40 versions prior to 2.3.5.30 RBR40 versions prior to 2.3.5.30 RBS40 versions prior to 2.3.5.30 RBK20 versions prior to 2.3.5.26 RBR20 versions prior to 2.3.5.26 RBS20 versions prior to 2.3.5.26 XR700 versions prior to 1.0.1.10 R7500v2 versions prior to 1.0.3.46 R7800 versions prior to 1.0.2.74 R8900 versions prior to 1.0.4.28 R9000 versions prior to 1.0.4.28 XR500 versions prior to 2.3.2.56 RAX120 versions prior to 1.0.0.78 **Description** Certain NETGEAR devices are affected by stored XSS. **Recommendations** For D7800 version prior to 1.0.1.56, update to version 1.0.1.56 or later. For RBK50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBR50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBS50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBK40 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBR40 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBS40 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For RBK20 version prior to 2.3.5.26, update to version 2.3.5.26 or later. For RBR20 version prior to 2.3.5.26, update to version 2.3.5.26 or later. For RBS20 version prior to 2.3.5.26, update to version 2.3.5.26 or later. For XR700 version prior to 1.0.1.10, update to version 1.0.1.10 or later. For R7500v2 version prior to 1.0.3.46, update to version 1.0.3.46 or later. For R7800 version prior to 1.0.2.74, update to version 1.0.2.74 or later. For R8900 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For R9000 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For XR500 version prior to 2.3.2.56, update to version 2.3.2.56 or later. For RAX120 version prior to 1.0.0.78, update to version 1.0.0.78 or later.

**Name of the Vulnerable Software and Affected Versions** NETGEAR D7800 versions prior to 1.0.1.56 NETGEAR R7500v2 versions prior to 1.0.3.46 NETGEAR R7800 versions prior to 1.0.2.74 NETGEAR R8900 versions prior to 1.0.4.28 NETGEAR R9000 versions prior to 1.0.4.28 NETGEAR RAX120 versions prior to 1.0.0.78 NETGEAR RBK50 versions prior to 2.3.5.30 NETGEAR RBR50 versions prior to 2.3.5.30 NETGEAR RBS50 versions prior to 2.3.5.30 NETGEAR XR500 versions prior to 2.3.2.56 NETGEAR XR700 versions prior to 1.0.1.10 **Description** The issue is related to stored XSS, affecting various NETGEAR devices. **Recommendations** For NETGEAR D7800 version prior to 1.0.1.56, update to version 1.0.1.56 or later. For NETGEAR R7500v2 version prior to 1.0.3.46, update to version 1.0.3.46 or later. For NETGEAR R7800 version prior to 1.0.2.74, update to version 1.0.2.74 or later. For NETGEAR R8900 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For NETGEAR R9000 version prior to 1.0.4.28, update to version 1.0.4.28 or later. For NETGEAR RAX120 version prior to 1.0.0.78, update to version 1.0.0.78 or later. For NETGEAR RBK50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR RBR50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR RBS50 version prior to 2.3.5.30, update to version 2.3.5.30 or later. For NETGEAR XR500 version prior to 2.3.2.56, update to version 2.3.2.56 or later. For NETGEAR XR700 version prior to 1.0.1.10, update to version 1.0.1.10 or later.