CVE-2018-21098 — OS Command Injection in Netgear R7800 Firmware

Severity

6.8MEDIUMNVD

EPSS

0.1%

top 65.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedApr 27

Latest updateMay 24

Description

NETGEAR R7800 devices before 1.0.2.60 are affected by command injection by an authenticated user.

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.9 | Impact: 5.9

GHSA

GHSA-cgvg-mq87-qcx9: NETGEAR R7800 devices before 1↗2022-05-24

▶

CVEList

CVE-2018-21098: NETGEAR R7800 devices before 1↗2020-04-27

▶