1. Home
  2. CVE Database
  3. CVE-2017-18715
MEDIUM · 6.1

CVE-2017-18715

Certain NETGEAR devices are affected by reflected XSS. This affects EX3700 before 1.0.0.66, EX3800 before 1.0.0.66, EX6100 before 1.0.2.20, EX6120 before 1.0.0.34, EX6150 before 1.0.0.36, EX6200 befor...

Vulnerability Description

Certain NETGEAR devices are affected by reflected XSS. This affects EX3700 before 1.0.0.66, EX3800 before 1.0.0.66, EX6100 before 1.0.2.20, EX6120 before 1.0.0.34, EX6150 before 1.0.0.36, EX6200 before 1.0.3.84, and EX7000 before 1.0.0.60.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality
LOW
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
NetgearEx3700 Firmware< 1.0.0.66
NetgearEx3700-
NetgearEx3800 Firmware< 1.0.0.66
NetgearEx3800-
NetgearEx6100 Firmware< 1.0.2.20
NetgearEx6100-
NetgearEx6120 Firmware< 1.0.0.34
NetgearEx6120-
NetgearEx6150 Firmware< 1.0.0.36
NetgearEx6150-
NetgearEx6200 Firmware< 1.0.3.84
NetgearEx6200-
NetgearEx7000 Firmware< 1.0.0.60
NetgearEx7000-

Related Weaknesses (CWE)

CWE-79

References

FAQ

What is CVE-2017-18715?

CVE-2017-18715 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Certain NETGEAR devices are affected by reflected XSS. This affects EX3700 before 1.0.0.66, EX3800 before 1.0.0.66, EX6100 before 1.0.2.20, EX6120 before 1.0.0.34, EX6150 before 1.0.0.36, EX6200 befor...

How severe is CVE-2017-18715?

CVE-2017-18715 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-18715?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear Ex3700 Firmware, Netgear Ex3700, Netgear Ex3800 Firmware, Netgear Ex3800, Netgear Ex6100 Firmware.