1. Home
  2. CVE Database
  3. CVE-2017-18862
MEDIUM · 6.5

CVE-2017-18862

Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE bef...

Vulnerability Description

Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE before 2017-05-11, GS108Ev3 before 2017-05-11, GS108PEv3 before 2017-05-11, GS116Ev2 before 2017-05-11, GSS108E before 2017-05-11, GSS116E before 2017-05-11, XS708Ev2 before 2017-05-11, and XS716E before 2017-05-11.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
NetgearJgs516Pe Firmware< 2017-05-11
NetgearJgs516Pe-
NetgearJgs524E Firmware< 2017-05-11
NetgearJgs524Ev2
NetgearJgs524Pe Firmware< 2017-05-11
NetgearJgs524Pe-
NetgearGs105E Firmware< 2017-05-11
NetgearGs105Ev2
NetgearGs105Pe Firmware< 2017-05-11
NetgearGs105Pe-
NetgearGs108E Firmware< 2017-05-11
NetgearGs108Ev3
NetgearGs108Pe Firmware< 2017-05-11
NetgearGs108Pev3
NetgearGs116E Firmware< 2017-05-11
NetgearGs116Ev2
NetgearGss108E Firmware< 2017-05-11
NetgearGss108E-
NetgearGss116E Firmware< 2017-05-11
NetgearGss116E-

Related Weaknesses (CWE)

CWE-287

References

FAQ

What is CVE-2017-18862?

CVE-2017-18862 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE bef...

How severe is CVE-2017-18862?

CVE-2017-18862 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-18862?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear Jgs516Pe Firmware, Netgear Jgs516Pe, Netgear Jgs524E Firmware, Netgear Jgs524E, Netgear Jgs524Pe Firmware.