CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2018-21153

CVSS 9.8v3.1pub. 2020-04-27upd. 2024-11-21

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D7800 before 1.0.1.34, DM200 before 1.0.0.50, EX2700 before 1.0.1.32, EX6100v2 before 1.0.1.70, EX6150v2 before 1.0.1.70, EX6200v2 before 1.0.1.62, EX6400 before 1.0.1.78, EX7300 before 1.0.1.62, EX8000 before 1.0.0.114, R6100 before 1.0.1.22, R7500 before 1.0.0.122, R7500v2 before 1.0.3.26, R7800 before 1.0.2.40, R8900 before 1.0.3.10, R9000 before 1.0.3.10, WN2000RPTv3 before 1.0.1.26, WN3000RPv2 before 1.0.0.56, WN3000RPv3 before 1.0.2.66, WN3100RPv2 before 1.0.0.56, WNDR4300 before 1.0.2.98, WNDR4300v2 before 1.0.0.54, WNDR4500v3 before 1.0.0.54, and WNR2000v5 before 1.0.0.64.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear D7800

    HW
    Netgear
    wszystkie wersje
  • Netgear D7800 Firmware

    OS
    Netgear
    < 1.0.1.34
  • Netgear Dm200

    HW
    Netgear
    wszystkie wersje
  • Netgear Dm200 Firmware

    OS
    Netgear
    < 1.0.0.50
  • Netgear Ex2700

    HW
    Netgear
    wszystkie wersje
  • Netgear Ex2700 Firmware

    OS
    Netgear
    < 1.0.1.32
  • Netgear Ex6100

    HW
    Netgear
    v2
  • Netgear Ex6100 Firmware

    OS
    Netgear
    < 1.0.1.70
  • Netgear Ex6150

    HW
    Netgear
    v2
  • Netgear Ex6150 Firmware

    OS
    Netgear
    < 1.0.1.70
  • Netgear Ex6200

    HW
    Netgear
    v2
  • Netgear Ex6200 Firmware

    OS
    Netgear
    < 1.0.1.62
  • Netgear Ex6400

    HW
    Netgear
    wszystkie wersje
  • Netgear Ex6400 Firmware

    OS
    Netgear
    < 1.0.1.78
  • Netgear Ex7300

    HW
    Netgear
    wszystkie wersje
  • Netgear Ex7300 Firmware

    OS
    Netgear
    < 1.0.1.62
  • Netgear Ex8000

    HW
    Netgear
    wszystkie wersje
  • Netgear Ex8000 Firmware

    OS
    Netgear
    < 1.0.0.114
  • Netgear R6100

    HW
    Netgear
    wszystkie wersje
  • Netgear R6100 Firmware

    OS
    Netgear
    < 1.0.1.22
  • Netgear R7500

    HW
    Netgear
    v2
  • Netgear R7500 Firmware

    OS
    Netgear
    < 1.0.3.26< 1.0.0.122
  • Netgear R7800

    HW
    Netgear
    wszystkie wersje
  • Netgear R7800 Firmware

    OS
    Netgear
    < 1.0.2.40
  • Netgear R8900

    HW
    Netgear
    wszystkie wersje
  • Netgear R8900 Firmware

    OS
    Netgear
    < 1.0.3.10
  • Netgear R9000

    HW
    Netgear
    wszystkie wersje
  • Netgear R9000 Firmware

    OS
    Netgear
    < 1.0.3.10
  • Netgear Wn2000rpt

    HW
    Netgear
    v3
  • Netgear Wn2000rpt Firmware

    OS
    Netgear
    < 1.0.1.26
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Auth BypassMemory
CWE
References

Related vulnerabilities

CVE-2017-6862CRITICAL9.8⚠ KEVten sam produkt

NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5 devices before 1.0...

CVE-2016-10174CRITICAL9.8⚠ KEVten sam produkt

The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL...

CVE-2025-50526CRITICAL9.8PL ✓ten sam produkt

Command injection w Netgear EX8000 via funkcja switch_status

CVE-2025-45492CRITICAL9.8PL ✓ten sam produkt

Command Injection w Netgear EX8000 via parametr Iface (action_wireless)

CVE-2025-29044CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Netgear R6100 umożliwiający zdalne wykonanie kodu