CVE-2017-18708: CSRF
First published: Fri Apr 24 2020(Updated: )
Certain NETGEAR devices are affected by CSRF. This affects R8300 before 1.0.2.94 and R8500 before 1.0.2.94.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear R8300 Firmware | <1.0.2.94 | |
| NETGEAR R8300 | ||
| Netgear R8500 Firmware | <1.0.2.94 | |
| NETGEAR R8500 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this NETGEAR CSRF vulnerability?
The vulnerability ID for this NETGEAR CSRF vulnerability is CVE-2017-18708.
Which NETGEAR devices are affected by this CSRF vulnerability?
The NETGEAR devices affected by this CSRF vulnerability are R8300 before 1.0.2.94 and R8500 before 1.0.2.94.
What is the severity of CVE-2017-18708?
The severity of CVE-2017-18708 is high (CVSS score of 8.8).
How can I fix the CSRF vulnerability in my NETGEAR device?
To fix the CSRF vulnerability in your NETGEAR device, you should update the firmware to version 1.0.2.94 or higher.
Where can I find more information about this CSRF vulnerability?
You can find more information about this CSRF vulnerability in the NETGEAR security advisory at the following link: https://kb.netgear.com/000053157/Security-Advisory-for-Cross-Site-Request-Forgery-on-Some-Routers-PSV-2017-0336
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/netgear
- canonical/netgear r8300 firmware
- canonical/netgear r8300
- canonical/netgear r8500 firmware
- canonical/netgear r8500