CVE-2017-18755 - Netgear R7000p Firmware, Netgear R6900p Firmware and Netgear R6700 Firmware

April 22, 2020

Critical 8.8

Certain NETGEAR devices are affected by CSRF. This affects R6300v2 before 1.0.4.8, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6900 before 1.0.1.22, R7000P before 1.0.0.86, R6900P before 1.0.0.56, R7300 before 1.0.0.54, R8300 before 1.0.2.106, R8500 before 1.0.2.106, DGN2200v4 before 1.0.0.86, DGND2200Bv4 before 1.0.0.86, R6050 before 1.0.0.86, JR6150 before 1.0.1.10, R6220 before 1.1.0.50, and WNDR3700v5 before V1.1.0.48.

Affected software

Netgear R7000p Firmware

Netgear R6900p Firmware

Netgear R6700 Firmware

Netgear Dgn2200 Firmware

Netgear R6050 Firmware

Netgear R7300 Firmware

Netgear R8300 Firmware

Netgear Jr6150 Firmware

Netgear R8500 Firmware

Netgear R6220 Firmware

Netgear Wndr3700 Firmware

Netgear R6300 Firmware

Netgear R6900 Firmware

Netgear Dgnd2200b Firmware

Netgear R6400 Firmware

Reference links

https://kb.netgear.com/000051493/Security-Advisory-for-Cross-Site-Request-Forgery-on-Routers-and-Modem-Routers-PSV-2017-0333

CVE-2017-18755 - Netgear R7000p Firmware, Netgear R6900p Firmware and Netgear R6700 Firmware

Affected software

Reference links

Get alerted to vulnerabilities in your software