PT-2020-8281 · NetGear · Netgear R6300V2+2

Published

2020-04-23

·

Updated

2020-04-23

·

CVE-2017-18732

CVSS v3.1

8.8

High

VectorAV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: NETGEAR R6300v2 versions prior to 1.0.4.8 NETGEAR PLW1000v2 versions prior to 1.0.0.14 NETGEAR PLW1010v2 versions prior to 1.0.0.14
Description: The issue is related to authentication bypass, affecting certain NETGEAR devices.
Recommendations: For R6300v2 versions prior to 1.0.4.8, update to version 1.0.4.8 or later. For PLW1000v2 versions prior to 1.0.0.14, update to version 1.0.0.14 or later. For PLW1010v2 versions prior to 1.0.0.14, update to version 1.0.0.14 or later.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2017-18732

Affected Products

Netgear Plw1000V2
Netgear Plw1010V2
Netgear R6300V2