CVE-2017-18794: Command Injection
First published: Tue Apr 21 2020(Updated: )
Certain NETGEAR devices are affected by command injection. This affects R6300v2 before 1.0.4.8_10.0.77, R6400 before 1.0.1.24, R6700 before 1.0.1.26, R7000 before 1.0.9.10, R7100LG before 1.0.0.32, R7900 before 1.0.1.18, R8000 before 1.0.3.54, R8500 before 1.0.2.100, and D6100 before 1.0.0.50_0.0.50.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear R6300 Firmware | <1.0.4.8_10.0.77 | |
| Netgear R6300 | =v2 | |
| Netgear R6400 Firmware | <1.0.1.24 | |
| NETGEAR R6400 | ||
| Netgear R6700 Firmware | <1.0.1.26 | |
| NETGEAR R6700 | ||
| Netgear R7000 Firmware | <1.0.9.10 | |
| NETGEAR R7000 | ||
| Netgear R7100lg Firmware | <1.0.0.32 | |
| Netgear R7100LG | ||
| Netgear R7900 Firmware | <1.0.1.18 | |
| Netgear R7900 | ||
| Netgear R8000 Firmware | <1.0.3.54 | |
| NETGEAR R8000 | ||
| Netgear R8500 Firmware | <1.0.2.100 | |
| NETGEAR R8500 | ||
| Netgear D6100 Firmware | <1.0.0.50_0.0.50 | |
| NETGEAR D6100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
Which NETGEAR devices are affected by CVE-2017-18794?
R6300v2, R6400, R6700, R7000, R7100LG, R7900, R8000, R8500, and D6100 are affected by CVE-2017-18794.
What is the severity of CVE-2017-18794?
The severity of CVE-2017-18794 is high with a CVSS score of 8.4.
How can I fix CVE-2017-18794?
To fix CVE-2017-18794, you need to update your firmware to the latest version provided by NETGEAR.
Where can I find more information about CVE-2017-18794?
You can find more information about CVE-2017-18794 on the NETGEAR security advisory page.
What is the CWE ID associated with CVE-2017-18794?
The CWE IDs associated with CVE-2017-18794 are CWE-77 and CWE-74.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/softwarecombine
- agent/references
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- vendor/netgear
- canonical/netgear r6300 firmware
- canonical/netgear r6300
- version/netgear r6300/v2
- canonical/netgear r6400 firmware
- canonical/netgear r6400
- canonical/netgear r6700 firmware
- canonical/netgear r6700
- canonical/netgear r7000 firmware
- canonical/netgear r7000
- canonical/netgear r7100lg firmware
- canonical/netgear r7100lg
- canonical/netgear r7900 firmware
- canonical/netgear r7900
- canonical/netgear r8000 firmware
- canonical/netgear r8000
- canonical/netgear r8500 firmware
- canonical/netgear r8500
- canonical/netgear d6100 firmware
- canonical/netgear d6100