First published: Thu Apr 23 2020(Updated: )
Certain NETGEAR devices are affected by CSRF. This affects JR6150 before 1.0.1.10, R6050 before 1.0.1.10, R6250 before 1.0.4.12, R6300v2 before 1.0.4.8, R6700 before 1.0.1.16, R6900 before 1.0.1.16, R7300DST before 1.0.0.54, R7900 before 1.0.1.12, R8000 before 1.0.3.32, and R8500 before 1.0.2.74.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear Jr6150 Firmware | <1.0.1.10 | |
Netgear Jr6150 | ||
Netgear R6050 Firmware | <1.0.1.10 | |
Netgear R6050 | ||
netgear R6250 Firmware | <1.0.4.12 | |
NETGEAR R6250 | ||
Netgear R6300 Firmware | <1.0.4.8 | |
Netgear R6300 | =v2 | |
Netgear R6700 Firmware | <1.0.1.16 | |
NETGEAR R6700 | ||
Netgear R6900 Firmware | <1.0.1.16 | |
Netgear R6900 | ||
Netgear R7300dst Firmware | <1.0.0.54 | |
Netgear R7300dst | ||
Netgear R7900 Firmware | <1.0.1.12 | |
Netgear R7900 | ||
Netgear R8000 Firmware | <1.0.3.32 | |
NETGEAR R8000 | ||
Netgear R8500 Firmware | <1.0.2.74 | |
NETGEAR R8500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JR6150, R6050, R6250, R6300v2, R6700, R6900, R7300DST, R7900, R8000, and R8500 are affected by CSRF.
CVE-2017-18742 has a severity score of 8.8 (high).
To fix the CSRF vulnerability, update the firmware of the affected NETGEAR devices to the recommended versions.
You can find more information about the CSRF vulnerability in NETGEAR devices in the security advisory published by NETGEAR.
The CSRF vulnerability is classified under CWE-352.