CVE-2017-18860

CWE-743 documents3 sources
Severity
7.7HIGH
EPSS
0.1%
top 83.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
25
Netgear Fs752tp FirmwareNetgear Gs108t FirmwareNetgear Gs110tp Firmware+22 more
Timeline
PublishedApr 29
Latest updateMay 24

Description

Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier, GS716Tv2 5.4.2.27 and earlier, GS716Tv3 6.3.1.16 and earlier, GS724Tv3 5.4.2.27 and earlier, GS724Tv4 6.3.1.16 and earlier, GS728TPSB 5.3.0.29 and earlier, GS728TSB 5.3.0.29 and earlier, GS728TXS 6.1.0.35 a

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HExploitability: 2.5 | Impact: 5.2

Affected Packages25 packages

NVDnetgear/m4200_firmware12.0.2.10
NVDnetgear/m4300_firmware12.0.2.10
NVDnetgear/m5300_firmware11.0.0.28
NVDnetgear/m6100_firmware11.0.0.28

🔴Vulnerability Details

2
GHSA
GHSA-r57v-98gg-r4g5: Certain NETGEAR devices are affected by debugging command execution2022-05-24
CVEList
CVE-2017-18860: Certain NETGEAR devices are affected by debugging command execution2020-04-29
CVE-2017-18860 (HIGH CVSS 7.7) | Certain NETGEAR devices are affecte | cvebase.io