CVE-2017-18828
published 2020-04-20CVE-2017-18828: Certain NETGEAR devices are affected by stored XSS. This affects M4300-28G before 12.0.2.15, M4300-52G before 12.0.2.15, M4300-28G-POE+ before 12.0.2.15…
medium4.8CVSS 3.1
AVNACLPRHUIRSCCLILAN
Certain NETGEAR devices are affected by stored XSS. This affects M4300-28G before 12.0.2.15, M4300-52G before 12.0.2.15, M4300-28G-POE+ before 12.0.2.15, M4300-52G-POE+ before 12.0.2.15, M4300-8X8F before 12.0.2.15, M4300-12X12F before 12.0.2.15, M4300-24X24F before 12.0.2.15, M4300-24X before 12.0.2.15, M4300-48X before 12.0.2.15, and M4200 before 12.0.2.15.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | m4200_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-12x12f_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-24x24f_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-24x_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-28g-poe_+_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-28g_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-48x_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-52g-poe_+_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-52g_firmware | < 12.0.2.15 | 12.0.2.15 |
| netgear | m4300-8x8f_firmware | < 12.0.2.15 | 12.0.2.15 |