CVE-2018-21218

Name of the Vulnerable Software and Affected Versions D3600 versions 1.0.0.0 through 1.0.0.66 D6000 versions 1.0.0.0 through 1.0.0.66 D6100 versions 1.0.0.0 through 1.0.0.55 D7800 versions 1.0.0.0 through 1.0.1.29 R6100 versions 1.0.0.0 through 1.0.1.19 R7500 versions 1.0.0.0 through 1.0.0.117 R7500v2 versions 1.0.0.0 through 1.0.3.23 R9000 versions 1.0.0.0 through 1.0.2.51 WNDR3700v4 versions 1.0.0.0 through 1.0.2.95 WNDR4300 versions 1.0.0.0 through 1.0.2.97 WNDR4300v2 versions 1.0.0.0 through 1.0.0.49 WNDR4500v3 versions 1.0.0.0 through 1.0.0.49 WNR2000v5 versions 1.0.0.0 through 1.0.0.61

Description The issue is a buffer overflow that can be exploited by an unauthenticated attacker. This allows the attacker to potentially execute arbitrary code on the affected device.

Recommendations For D3600 version 1.0.0.66 and earlier, update to version 1.0.0.67 or later. For D6000 version 1.0.0.66 and earlier, update to version 1.0.0.67 or later. For D6100 version 1.0.0.55 and earlier, update to version 1.0.0.56 or later. For D7800 version 1.0.1.29 and earlier, update to version 1.0.1.30 or later. For R6100 version 1.0.1.19 and earlier, update to version 1.0.1.20 or later. For R7500 version 1.0.0.117 and earlier, update to version 1.0.0.118 or later. For R7500v2 version 1.0.3.23 and earlier, update to version 1.0.3.24 or later. For R9000 version 1.0.2.51 and earlier, update to version 1.0.2.52 or later. For WNDR3700v4 version 1.0.2.95 and earlier, update to version 1.0.2.96 or later. For WNDR4300 version 1.0.2.97 and earlier, update to version 1.0.2.98 or later. For WNDR4300v2 version 1.0.0.49 and earlier, update to version 1.0.0.50 or later. For WNDR4500v3 version 1.0.0.49 and earlier, update to version 1.0.0.50 or later. For WNR2000v5 version 1.0.0.61 and earlier, update to version 1.0.0.62 or later.