CVE-2018-21162

Name of the Vulnerable Software and Affected Versions D6400 versions prior to 1.0.0.78 EX6200 versions prior to 1.0.3.86 EX7000 versions prior to 1.0.0.64 R6250 versions prior to 1.0.4.8 R6300v2 versions prior to 1.0.4.6 R6400 versions prior to 1.0.1.12 R6700 versions prior to 1.0.1.16 R7000 versions prior to 1.0.7.10 R7100LG versions prior to 1.0.0.42 R7300DST versions prior to 1.0.0.44 R7900 versions prior to 1.0.1.12 R8000 versions prior to 1.0.3.36 R8300 versions prior to 1.0.2.74 R8500 versions prior to 1.0.2.74 WNDR3400v3 versions prior to 1.0.1.14 WNR3500Lv2 versions prior to 1.2.0.48

Description Certain NETGEAR devices are affected by command injection by an unauthenticated attacker.

Recommendations For D6400, update to version 1.0.0.78 or later. For EX6200, update to version 1.0.3.86 or later. For EX7000, update to version 1.0.0.64 or later. For R6250, update to version 1.0.4.8 or later. For R6300v2, update to version 1.0.4.6 or later. For R6400, update to version 1.0.1.12 or later. For R6700, update to version 1.0.1.16 or later. For R7000, update to version 1.0.7.10 or later. For R7100LG, update to version 1.0.0.42 or later. For R7300DST, update to version 1.0.0.44 or later. For R7900, update to version 1.0.1.12 or later. For R8000, update to version 1.0.3.36 or later. For R8300, update to version 1.0.2.74 or later. For R8500, update to version 1.0.2.74 or later. For WNDR3400v3, update to version 1.0.1.14 or later. For WNR3500Lv2, update to version 1.2.0.48 or later.