CVE-2018-21113

Name of the Vulnerable Software and Affected Versions D6100 versions 1.0.0.0 through 1.0.0.57 D7800 versions 1.0.0.0 through 1.0.1.41 R6100 versions 1.0.0.0 through 1.0.1.27 R7500 versions 1.0.0.0 through 1.0.0.129 R7500v2 versions 1.0.0.0 through 1.0.3.35 R7800 versions 1.0.0.0 through 1.0.2.51 R8900 versions 1.0.0.0 through 1.0.4.11 R9000 versions 1.0.0.0 through 1.0.4.11 WNDR3700v4 versions 1.0.0.0 through 1.0.2.101 WNDR4300 versions 1.0.0.0 through 1.0.2.103 WNDR4300v2 versions 1.0.0.0 through 1.0.0.55 WNDR4500v3 versions 1.0.0.0 through 1.0.0.55

Description Certain NETGEAR devices are affected by command injection by an unauthenticated attacker.

Recommendations For D6100 version 1.0.0.57 and earlier, update to version 1.0.0.58 or later. For D7800 version 1.0.1.41 and earlier, update to version 1.0.1.42 or later. For R6100 version 1.0.1.27 and earlier, update to version 1.0.1.28 or later. For R7500 version 1.0.0.129 and earlier, update to version 1.0.0.130 or later. For R7500v2 version 1.0.3.35 and earlier, update to version 1.0.3.36 or later. For R7800 version 1.0.2.51 and earlier, update to version 1.0.2.52 or later. For R8900 version 1.0.4.11 and earlier, update to version 1.0.4.12 or later. For R9000 version 1.0.4.11 and earlier, update to version 1.0.4.12 or later. For WNDR3700v4 version 1.0.2.101 and earlier, update to version 1.0.2.102 or later. For WNDR4300 version 1.0.2.103 and earlier, update to version 1.0.2.104 or later. For WNDR4300v2 version 1.0.0.55 and earlier, update to version 1.0.0.56 or later. For WNDR4500v3 version 1.0.0.55 and earlier, update to version 1.0.0.56 or later.