CVE-2018-21207

Name of the Vulnerable Software and Affected Versions D3600 versions prior to 1.0.0.67 D6000 versions prior to 1.0.0.67 D7800 versions prior to 1.0.1.30 EX2700 versions prior to 1.0.1.28 R6100 versions prior to 1.0.1.20 R7500 versions prior to 1.0.0.118 R7500v2 versions prior to 1.0.3.24 R7800 versions prior to 1.0.2.40 R9000 versions prior to 1.0.2.52 WN2000RPTv3 versions prior to 1.0.1.20 WN3000RPv3 versions prior to 1.0.2.50 WN3100RPv2 versions prior to 1.0.0.56 WNDR3700v4 versions prior to 1.0.2.96 WNDR4300 versions prior to 1.0.2.98 WNDR4300v2 versions prior to 1.0.0.50 WNDR4500v3 versions prior to 1.0.0.50

Description The issue is a stack-based buffer overflow that can be exploited by an unauthenticated attacker. This allows the attacker to potentially execute arbitrary code on the affected device.

Recommendations Update D3600 to version 1.0.0.67 or later. Update D6000 to version 1.0.0.67 or later. Update D7800 to version 1.0.1.30 or later. Update EX2700 to version 1.0.1.28 or later. Update R6100 to version 1.0.1.20 or later. Update R7500 to version 1.0.0.118 or later. Update R7500v2 to version 1.0.3.24 or later. Update R7800 to version 1.0.2.40 or later. Update R9000 to version 1.0.2.52 or later. Update WN2000RPTv3 to version 1.0.1.20 or later. Update WN3000RPv3 to version 1.0.2.50 or later. Update WN3100RPv2 to version 1.0.0.56 or later. Update WNDR3700v4 to version 1.0.2.96 or later. Update WNDR4300 to version 1.0.2.98 or later. Update WNDR4300v2 to version 1.0.0.50 or later. Update WNDR4500v3 to version 1.0.0.50 or later.