CVE-2017-18762 - Netgear R6100 Firmware, Netgear D6100 Firmware and Netgear R7100lg Firmware

Critical 8.8

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D3600 before 1.0.0.68, D6000 before 1.0.0.68, D6100 before 1.0.0.57, R6100 before 1.0.1.16, R6900P before 1.2.0.22, R7000 before 1.0.9.10, R7000P before 1.2.0.22, R7100LG before 1.0.0.40, WNDR3700v4 before 1.0.2.88, WNDR4300v1 before 1.0.2.90, WNDR4300v2 before 1.0.0.48, WNDR4500v3 before 1.0.0.48, and WNR2000v5 before 1.0.0.58.

Affected software

Netgear R6100 Firmware

Netgear D6100 Firmware

Netgear R7100lg Firmware

Netgear Wndr4500 Firmware

Netgear D3600 Firmware

Netgear Wnr2000 Firmware

Netgear R6900p Firmware

Netgear R7000 Firmware

Netgear R7000p Firmware

Netgear D6000 Firmware

Netgear Wndr3700 Firmware

Netgear Wndr4300 Firmware

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.