Netgear Xr300 Firmware
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Netgear Xr300 Firmware.
By the Year
In 2026 there have been 0 vulnerabilities in Netgear Xr300 Firmware. Last year, in 2025 Xr300 Firmware had 3 security vulnerabilities published. Right now, Xr300 Firmware is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 3 | 0.00 |
| 2024 | 7 | 0.00 |
It may take a day or so for new Xr300 Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Netgear Xr300 Firmware Security Vulnerabilities
Netgear XR300 V1.0.3.38 stack buffer overflow in usb_device.cgi via POST
CVE-2025-52082
- July 15, 2025
In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow exists in the HTTPD service through the usb_device.cgi endpoint. The vulnerability occurs when processing POST requests containing the read_access parameter.
Stack Buffer Overflow in Netgear XR300 V1.0.3.38_10.3.30 via usb_device.cgi
CVE-2025-52081
- July 15, 2025
In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usb_device.cgi endpoint. The vulnerability occurs when processing POST requests containing the usb_folder parameter.
Netgear XR300 V1.0.3.38_10.3.30: HTTPD stack overflow via usb_device.cgi
CVE-2025-52080
- July 15, 2025
In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usb_device.cgi endpoint. The vulnerability occurs when processing POST requests containing the share_name parameter.
Netgear XR300 v1.0 Command Injection via CGI
CVE-2024-52018
- November 05, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the system_name parameter at genie_dyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request.
Netgear XR300 v1.0 Stack Overflow in CGI
CVE-2024-52017
- November 05, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the passphrase parameter at bridge_wireless_main.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
Netgear XR300 v1.0 Stack Overflow in ssid
CVE-2024-51022
- November 05, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the ssid parameter in bridge_wireless_main.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
Netgear XR300 v1.0 Stack Overflow in usb_approve.cgi
CVE-2024-51016
- November 05, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the addName%d parameter in usb_approve.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
Netgear XR300 v1.0 Stack Overflow in ssid_an
CVE-2024-51014
- November 05, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the ssid_an parameter in bridge_wireless_main.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
Netgear XR300 v1.0 Command Injection via CGI
CVE-2024-51008
- November 05, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the system_name parameter at wiz_dyn.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request.
Netgear XR300 v1.0 Stack Overflow in passphrase
CVE-2024-51007
- November 05, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow via the passphrase parameter at wireless.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Netgear Xr300 Firmware or by Netgear? Click the Watch button to subscribe.
