CVE-2017-18747: Input Validation
First published: Thu Apr 23 2020(Updated: )
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects EX3700 before 1.0.0.64, EX3800 before 1.0.0.64, EX6000 before 1.0.0.24, EX6130 before 1.0.0.16, EX6400 before 1.0.1.60, EX7000 before 1.0.0.50, EX7300 before 1.0.1.60, and WN2500RPv2 before 1.0.1.46.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear Ex3700 Firmware | <1.0.0.64 | |
| Netgear EX3700 | ||
| Netgear Ex3800 Firmware | <1.0.0.64 | |
| Netgear Ex3800 | ||
| Netgear Ex6000 Firmware | <1.0.0.24 | |
| Netgear Ex6000 | ||
| Netgear Ex6130 Firmware | <1.0.0.16 | |
| Netgear Ex6130 | ||
| Netgear Ex6400 Firmware | <1.0.1.60 | |
| Netgear Ex6400 | ||
| Netgear Ex7000 Firmware | <1.0.0.50 | |
| NETGEAR EX7000 | ||
| Netgear Ex7300 Firmware | <1.0.1.60 | |
| Netgear Ex7300 | ||
| Netgear Wn2500rp Firmware | <1.0.1.46 | |
| Netgear Wn2500rp | =v2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2017-18747?
CVE-2017-18747 is a vulnerability affecting certain NETGEAR devices due to incorrect configuration of security settings.
Which NETGEAR devices are affected by CVE-2017-18747?
CVE-2017-18747 affects the following NETGEAR devices: EX3700 before 1.0.0.64, EX3800 before 1.0.0.64, EX6000 before 1.0.0.24, EX6130 before 1.0.0.16, EX6400 before 1.0.1.60, EX7000 before 1.0.0.50, EX7300 before 1.0.1.60, and WN2500RPv2 before 1.0.1.46.
What is the severity of CVE-2017-18747?
CVE-2017-18747 has a severity score of 6.5, which is classified as high.
How can I fix CVE-2017-18747?
To fix CVE-2017-18747, upgrade the firmware of the affected NETGEAR devices to the recommended versions: EX3700 to 1.0.0.64, EX3800 to 1.0.0.64, EX6000 to 1.0.0.24, EX6130 to 1.0.0.16, EX6400 to 1.0.1.60, EX7000 to 1.0.0.50, EX7300 to 1.0.1.60, and WN2500RPv2 to 1.0.1.46.
Where can I find more information about CVE-2017-18747?
You can find more information about CVE-2017-18747 in the NETGEAR security advisory at the following link: [https://kb.netgear.com/000051507/Security-Advisory-for-Security-Misconfiguration-on-Some-Extenders-PSV-2016-0115](https://kb.netgear.com/000051507/Security-Advisory-for-Security-Misconfiguration-on-Some-Extenders-PSV-2016-0115).
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/description
- agent/references
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/netgear
- canonical/netgear ex3700 firmware
- canonical/netgear ex3700
- canonical/netgear ex3800 firmware
- canonical/netgear ex3800
- canonical/netgear ex6000 firmware
- canonical/netgear ex6000
- canonical/netgear ex6130 firmware
- canonical/netgear ex6130
- canonical/netgear ex6400 firmware
- canonical/netgear ex6400
- canonical/netgear ex7000 firmware
- canonical/netgear ex7000
- canonical/netgear ex7300 firmware
- canonical/netgear ex7300
- canonical/netgear wn2500rp firmware
- canonical/netgear wn2500rp
- version/netgear wn2500rp/v2