CVE-2018-21194

Name of the Vulnerable Software and Affected Versions NETGEAR D6100 versions 1.0.0.0 through 1.0.0.56 NETGEAR D7800 versions 1.0.0.0 through 1.0.1.33 NETGEAR R6100 versions 1.0.0.0 through 1.0.1.19 NETGEAR R7500 versions 1.0.0.0 through 1.0.0.121 NETGEAR R7500v2 versions 1.0.0.0 through 1.0.3.23 NETGEAR R7800 versions 1.0.0.0 through 1.0.2.39 NETGEAR R9000 versions 1.0.0.0 through 1.0.3.5 NETGEAR WNDR3700v4 versions 1.0.0.0 through 1.0.2.91 NETGEAR WNDR4300 versions 1.0.0.0 through 1.0.2.93 NETGEAR WNDR4300v2 versions 1.0.0.0 through 1.0.0.49 NETGEAR WNDR4500v3 versions 1.0.0.0 through 1.0.0.49 NETGEAR WNR2000v5 versions 1.0.0.0 through 1.0.0.61

Description The issue is a stack-based buffer overflow that can be exploited by an authenticated user. This affects various NETGEAR devices.

Recommendations For NETGEAR D6100 version 1.0.0.56 and earlier, update to version 1.0.0.57 or later. For NETGEAR D7800 version 1.0.1.33 and earlier, update to version 1.0.1.34 or later. For NETGEAR R6100 version 1.0.1.19 and earlier, update to version 1.0.1.20 or later. For NETGEAR R7500 version 1.0.0.121 and earlier, update to version 1.0.0.122 or later. For NETGEAR R7500v2 version 1.0.3.23 and earlier, update to version 1.0.3.24 or later. For NETGEAR R7800 version 1.0.2.39 and earlier, update to version 1.0.2.40 or later. For NETGEAR R9000 version 1.0.3.5 and earlier, update to version 1.0.3.6 or later. For NETGEAR WNDR3700v4 version 1.0.2.91 and earlier, update to version 1.0.2.92 or later. For NETGEAR WNDR4300 version 1.0.2.93 and earlier, update to version 1.0.2.94 or later. For NETGEAR WNDR4300v2 version 1.0.0.49 and earlier, update to version 1.0.0.50 or later. For NETGEAR WNDR4500v3 version 1.0.0.49 and earlier, update to version 1.0.0.50 or later. For NETGEAR WNR2000v5 version 1.0.0.61 and earlier, update to version 1.0.0.62 or later.