CVE-2017-18796
MEDIUM6.7CVSS v3
4.6CVSS v2
0.07%
EPSS (exploit probability)
CWE-74CWE
Description
Certain NETGEAR devices are affected by command injection. This affects R6400 before 1.0.1.24, R6700 before 1.0.1.26, R6900 before 1.0.1.28, R7000 before 1.0.9.10, R7000P before 1.0.1.16, R6900P before 1.0.1.16, and R7800 before 1.0.2.36.
CVSS v3 vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected routers (2)
| Vendor | Model | Matched via | Affected versions | Fixed in | Patch Status |
|---|---|---|---|---|---|
| Netgear | Netgear Nighthawk R7000 | — |
versionEndExcluding=1.0.9.10 | 1.0.9.10 | Patched |
| Netgear | Netgear Nighthawk R7800 | — |
versionEndExcluding=1.0.2.36 | 1.0.2.36 | Patched |