CVE-2017-18767

Name of the Vulnerable Software and Affected Versions: NETGEAR D7800 versions prior to 1.0.1.34 NETGEAR D8500 versions prior to 1.0.3.39 NETGEAR R6400 versions prior to 1.0.1.14 NETGEAR R6400v2 versions prior to 1.0.2.32 NETGEAR R6700 versions prior to 1.0.1.22 NETGEAR R6900 versions prior to 1.0.1.22 NETGEAR R7000 versions prior to 1.0.9.4 NETGEAR R7100LG versions prior to 1.0.0.32 NETGEAR R7300 versions prior to 1.0.0.56 NETGEAR R7800 versions prior to 1.0.2.36 NETGEAR R7900 versions prior to 1.0.2.10 NETGEAR R8000 versions prior to 1.0.3.24 NETGEAR R8300 versions prior to 1.0.2.74 NETGEAR R8500 versions prior to 1.0.2.74

Description: Certain NETGEAR devices are affected by command injection by an authenticated user.

Recommendations: Update D7800 to version 1.0.1.34 or later Update D8500 to version 1.0.3.39 or later Update R6400 to version 1.0.1.14 or later Update R6400v2 to version 1.0.2.32 or later Update R6700 to version 1.0.1.22 or later Update R6900 to version 1.0.1.22 or later Update R7000 to version 1.0.9.4 or later Update R7100LG to version 1.0.0.32 or later Update R7300 to version 1.0.0.56 or later Update R7800 to version 1.0.2.36 or later Update R7900 to version 1.0.2.10 or later Update R8000 to version 1.0.3.24 or later Update R8300 to version 1.0.2.74 or later Update R8500 to version 1.0.2.74 or later