PT-2020-8826 · NetGear · Netgear R7800+3
Mongo
·
Published
2020-04-28
·
Updated
2020-05-01
·
CVE-2018-21182
CVSS v3.1
6.8
Medium
| Vector | AC:L/AV:A/A:H/C:H/I:H/PR:H/S:U/UI:N |
Name of the Vulnerable Software and Affected Versions
NETGEAR R7800 versions prior to 1.0.2.40
NETGEAR R9000 versions prior to 1.0.2.52
NETGEAR WNDR3700v4 versions prior to 1.0.2.92
NETGEAR WNDR4300 versions prior to 1.0.2.94
Description
The issue is a stack-based buffer overflow that can be exploited by an authenticated user.
Recommendations
For NETGEAR R7800 versions prior to 1.0.2.40, update to version 1.0.2.40 or later.
For NETGEAR R9000 versions prior to 1.0.2.52, update to version 1.0.2.52 or later.
For NETGEAR WNDR3700v4 versions prior to 1.0.2.92, update to version 1.0.2.92 or later.
For NETGEAR WNDR4300 versions prior to 1.0.2.94, update to version 1.0.2.94 or later.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netgear R7800
Netgear R9000
Netgear Wndr3700V4
Netgear Wndr4300