PT-2020-8777 · NetGear · Netgear Wnd930+5

Published

2020-04-23

·

Updated

2021-08-10

·

CVE-2018-21133

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions NETGEAR WAC505 versions prior to 5.0.0.17 NETGEAR WAC510 versions prior to 5.0.0.17 NETGEAR WAC720 versions prior to 5.0.0.17 NETGEAR WAC730 versions prior to 5.0.0.17 NETGEAR WAC740 versions prior to 5.0.0.17 NETGEAR WND930 versions prior to 5.0.0.17
Description The issue is a stack-based buffer overflow that can be exploited by an unauthenticated attacker.
Recommendations For WAC505 versions prior to 5.0.0.17, update to version 5.0.0.17 or later. For WAC510 versions prior to 5.0.0.17, update to version 5.0.0.17 or later. For WAC720 versions prior to 5.0.0.17, update to version 5.0.0.17 or later. For WAC730 versions prior to 5.0.0.17, update to version 5.0.0.17 or later. For WAC740 versions prior to 5.0.0.17, update to version 5.0.0.17 or later. For WND930 versions prior to 5.0.0.17, update to version 5.0.0.17 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2018-21133

Affected Products

Netgear Wac505
Netgear Wac510
Netgear Wac720
Netgear Wac730
Netgear Wac740
Netgear Wnd930