← Back

CVE-2017-18867

nvd nist
Published: May 5, 2020Modified: Nov 21, 2024

JSON object

Loading...
6.8
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.9 / Impact: 5.9
Source: NVD

Description

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6100 before 1.0.0.55, D7800 before V1.0.1.24, R7100LG before V1.0.0.32, WNDR4300v1 before 1.0.2.90, and WNDR4500v3 before 1.0.0.48.

Affected (5)

Netgear
5 products
D6100 Firmware
D7800 Firmware
R7100lg Firmware
Wndr4300 Firmware
Wndr4500 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
D6100 Firmware
Before 1.0.0.55
Running on/withPlatform Versions
Netgear
D6100
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
D7800 Firmware
Before 1.0.1.24
Running on/withPlatform Versions
Netgear
D7800
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R7100lg Firmware
Before 1.0.0.32
Running on/withPlatform Versions
Netgear
R7100lg
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wndr4300 Firmware
Before 1.0.2.90
Running on/withPlatform Versions
Netgear
Wndr4300
Version v1
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wndr4500 Firmware
Before 1.0.0.48
Running on/withPlatform Versions
Netgear
Wndr4500
Version v3

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.