CVE-2017-18804 — Injection in Netgear R7800 Firmware

Severity

6.7MEDIUMNVD

EPSS

0.2%

top 60.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedApr 21

Latest updateMay 24

Description

Certain NETGEAR devices are affected by command injection. This affects R7800 before 1.0.2.16 and R9000 before 1.0.2.4.

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

GHSA

GHSA-q4h3-8jhm-mq6c: Certain NETGEAR devices are affected by command injection↗2022-05-24

▶

CVEList

CVE-2017-18804: Certain NETGEAR devices are affected by command injection↗2020-04-21

▶