CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2018-21162

CVSS 9.8v3.1pub. 2020-04-23upd. 2024-11-21

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D6400 before 1.0.0.78, EX6200 before 1.0.3.86, EX7000 before 1.0.0.64, R6250 before 1.0.4.8, R6300v2 before 1.0.4.6, R6400 before 1.0.1.12, R6700 before 1.0.1.16, R7000 before 1.0.7.10, R7100LG before 1.0.0.42, R7300DST before 1.0.0.44, R7900 before 1.0.1.12, R8000 before 1.0.3.36, R8300 before 1.0.2.74, R8500 before 1.0.2.74, WNDR3400v3 before 1.0.1.14, and WNR3500Lv2 before 1.2.0.48.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear D6400

    HW
    Netgear
    wszystkie wersje
  • Netgear D6400 Firmware

    OS
    Netgear
    < 1.0.0.78
  • Netgear Ex6200

    HW
    Netgear
    wszystkie wersje
  • Netgear Ex6200 Firmware

    OS
    Netgear
    < 1.0.3.86
  • Netgear Ex7000

    HW
    Netgear
    wszystkie wersje
  • Netgear Ex7000 Firmware

    OS
    Netgear
    < 1.0.0.64
  • Netgear R6250

    HW
    Netgear
    wszystkie wersje
  • Netgear R6250 Firmware

    OS
    Netgear
    < 1.0.4.8
  • Netgear R6300

    HW
    Netgear
    v2
  • Netgear R6300 Firmware

    OS
    Netgear
    < 1.0.4.6
  • Netgear R6400

    HW
    Netgear
    wszystkie wersje
  • Netgear R6400 Firmware

    OS
    Netgear
    < 1.0.1.12
  • Netgear R6700

    HW
    Netgear
    wszystkie wersje
  • Netgear R6700 Firmware

    OS
    Netgear
    < 1.0.1.16
  • Netgear R7000

    HW
    Netgear
    wszystkie wersje
  • Netgear R7000 Firmware

    OS
    Netgear
    < 1.0.7.10
  • Netgear R7100lg

    HW
    Netgear
    wszystkie wersje
  • Netgear R7100lg Firmware

    OS
    Netgear
    < 1.0.0.42
  • Netgear R7300dst

    HW
    Netgear
    wszystkie wersje
  • Netgear R7300dst Firmware

    OS
    Netgear
    < 1.0.0.44
  • Netgear R7900

    HW
    Netgear
    wszystkie wersje
  • Netgear R7900 Firmware

    OS
    Netgear
    < 1.0.1.12
  • Netgear R8000

    HW
    Netgear
    wszystkie wersje
  • Netgear R8000 Firmware

    OS
    Netgear
    < 1.0.3.36
  • Netgear R8300

    HW
    Netgear
    wszystkie wersje
  • Netgear R8300 Firmware

    OS
    Netgear
    < 1.0.2.74
  • Netgear R8500

    HW
    Netgear
    wszystkie wersje
  • Netgear R8500 Firmware

    OS
    Netgear
    < 1.0.2.74
  • Netgear Wndr3400

    HW
    Netgear
    v3
  • Netgear Wndr3400 Firmware

    OS
    Netgear
    < 1.0.1.14
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Auth BypassCommand Injection
CWE
References

Related vulnerabilities

CVE-2023-36187CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attac...

CVE-2023-38928CRITICAL9.8ten sam produkt

Netgear R7100LG 1.0.0.78 was discovered to contain a command injection vulnerability via the password paramete...

CVE-2023-34563CRITICAL9.8ten sam produkt

netgear R6250 Firmware Version 1.0.4.48 is vulnerable to Buffer Overflow after authentication.

CVE-2023-33532CRITICAL9.8ten sam produkt

There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an a...

CVE-2023-30280CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability found in Netgear R6900 v.1.0.2.26, R6700v3 v.1.0.4.128, R6700 v.1.0.0.26 allows ...