1. Home
  2. CVE Database
  3. CVE-2017-18718
HIGH · 8.8

CVE-2017-18718

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.1.00.24, R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 b...

Vulnerability Description

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.1.00.24, R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 before 1.1.0.42.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
NetgearD6200 Firmware< 1.1.00.24
NetgearD6200-
NetgearR6700 Firmware< 1.1.0.42
NetgearR6700v2
NetgearR6800 Firmware< 1.1.0.42
NetgearR6800-
NetgearR6900 Firmware< 1.1.0.42
NetgearR6900v2

Related Weaknesses (CWE)

CWE-787

References

FAQ

What is CVE-2017-18718?

CVE-2017-18718 is a vulnerability with a CVSS score of 8.8 (HIGH). Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.1.00.24, R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 b...

How severe is CVE-2017-18718?

CVE-2017-18718 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-18718?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear D6200 Firmware, Netgear D6200, Netgear R6700 Firmware, Netgear R6700, Netgear R6800 Firmware.