CVE-2017-18860
Last modified
CVE-2017-18860 is a high-severity vulnerability rated 7.7/10 on the CVSS scale. Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier, GS716Tv2 5.4.2.27 and earlier, GS716Tv3 6.3.1.16 and earlier, GS724Tv3 5.4.2.27 and earlier, GS724Tv4 6.3.1.16 and earlier, GS728TPSB 5.3.0.29 and earlier, GS728TSB 5.3.0.29 and earlier, GS728TXS 6.1.0.35 and earlier, GS748Tv4 5.4.2.27 and earlier, GS748Tv5 6.3.1.16 and earlier, GS752TPSB 5.3.0.29 and earlier, GS752TSB 5.3.0.29 and earlier, GS752TXS 6.1.0.35 and earlier, M4200 12.0.2.10 and earlier, M4300 12.0.2.10 and earlier, M5300 11.0.0.28 and earlier, M6100 11.0.0.28 and earlier, M7100 11.0.0.28 and earlier, S3300 6.6.1.4 and earlier, XS708T 6.6.0.11 and earlier, XS712T 6.1.0.34 and earlier, and XS716T 6.6.0.11 and earlier.. EPSS estimates a 0.52% chance of exploitation in the next 30 days.
Description
Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier, GS716Tv2 5.4.2.27 and earlier, GS716Tv3 6.3.1.16 and earlier, GS724Tv3 5.4.2.27 and earlier, GS724Tv4 6.3.1.16 and earlier, GS728TPSB 5.3.0.29 and earlier, GS728TSB 5.3.0.29 and earlier, GS728TXS 6.1.0.35 and earlier, GS748Tv4 5.4.2.27 and earlier, GS748Tv5 6.3.1.16 and earlier, GS752TPSB 5.3.0.29 and earlier, GS752TSB 5.3.0.29 and earlier, GS752TXS 6.1.0.35 and earlier, M4200 12.0.2.10 and earlier, M4300 12.0.2.10 and earlier, M5300 11.0.0.28 and earlier, M6100 11.0.0.28 and earlier, M7100 11.0.0.28 and earlier, S3300 6.6.1.4 and earlier, XS708T 6.6.0.11 and earlier, XS712T 6.1.0.34 and earlier, and XS716T 6.6.0.11 and earlier.
Metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Fs752tp Firmware | <= 5.4.2.19 |
| Netgear | Gs108t Firmware | <= 5.4.2.29 |
| Netgear | Gs110tp Firmware | <= 5.4.2.29 |
| Netgear | Gs418tpp Firmware | <= 6.6.2.6 |
| Netgear | Gs510tlp Firmware | <= 6.6.2.6 |
| Netgear | Gs510tp Firmware | <= 5.04.2.27 |
| Netgear | Gs510tpp Firmware | <= 6.6.2.6 |
| Netgear | Gs716t Firmware | <= 5.4.2.27 |
| Netgear | Gs716t Firmware | <= 6.3.1.16 |
| Netgear | Gs724t Firmware | <= 5.4.2.27 |
| Netgear | Gs724t Firmware | <= 6.3.1.16 |
| Netgear | Gs728tpsb Firmware | <= 5.3.0.29 |
| Netgear | Gs728tsb Firmware | <= 5.3.0.29 |
| Netgear | Gs728txs Firmware | <= 6.1.0.35 |
| Netgear | Gs748t Firmware | <= 5.4.2.27 |
| Netgear | Gs748t Firmware | <= 6.3.1.16 |
| Netgear | Gs752tpsb Firmware | <= 5.3.0.29 |
| Netgear | Gs752tsb Firmware | <= 5.3.0.29 |
| Netgear | Gs752txs Firmware | <= 6.1.0.35 |
| Netgear | M4200 Firmware | <= 12.0.2.10 |
| Netgear | M4300 Firmware | <= 12.0.2.10 |
| Netgear | M5300 Firmware | <= 11.0.0.28 |
| Netgear | M6100 Firmware | <= 11.0.0.28 |
| Netgear | M7100 Firmware | <= 11.0.0.28 |
| Netgear | S3300 Firmware | <= 6.6.1.4 |
| Netgear | Xs708t Firmware | <= 6.6.0.11 |
| Netgear | Xs712t Firmware | <= 6.1.0.34 |
| Netgear | Xs716t Firmware | <= 6.6.0.11 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-18860?
How severe is CVE-2017-18860?
How do I fix CVE-2017-18860?
Are you affected by CVE-2017-18860?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST