CVE-2017-18805
Last modified
CVE-2017-18805 is a medium-severity vulnerability rated 6.7/10 on the CVSS scale. Certain NETGEAR devices are affected by command injection. This affects WAC510 before 1.3.0.10, WAC120 before 2.1.4, WNDAP620 before 2.1.3, WND930 before 2.1.2, WN604 before 3.3.7, WNDAP660 before 3.7.4.0, WNDAP350 before 3.7.4.0, WNAP320 before 3.7.4.0, WNAP210v2 before 3.7.4.0, and WNDAP360 before 3.7.4.0.. EPSS estimates a 0.56% chance of exploitation in the next 30 days.
Description
Certain NETGEAR devices are affected by command injection. This affects WAC510 before 1.3.0.10, WAC120 before 2.1.4, WNDAP620 before 2.1.3, WND930 before 2.1.2, WN604 before 3.3.7, WNDAP660 before 3.7.4.0, WNDAP350 before 3.7.4.0, WNAP320 before 3.7.4.0, WNAP210v2 before 3.7.4.0, and WNDAP360 before 3.7.4.0.
Metrics
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Wac510 Firmware | < 1.3.0.10 |
| Netgear | Wac120 Firmware | < 2.1.4 |
| Netgear | Wndap620 Firmware | < 2.1.3 |
| Netgear | Wnd930 Firmware | < 2.1.2 |
| Netgear | Wn604 Firmware | < 3.3.7 |
| Netgear | Wndap660 Firmware | < 3.7.4.0 |
| Netgear | Wndap350 Firmware | < 3.7.4.0 |
| Netgear | Wnap320 Firmware | < 3.7.4.0 |
| Netgear | Wnap210 Firmware | < 3.7.4.0 |
| Netgear | Wndap360 Firmware | < 3.7.4.0 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-18805?
How severe is CVE-2017-18805?
How do I fix CVE-2017-18805?
Are you affected by CVE-2017-18805?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST