First published: Tue Apr 28 2020(Updated: )
Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE before 2017-05-11, GS108Ev3 before 2017-05-11, GS108PEv3 before 2017-05-11, GS116Ev2 before 2017-05-11, GSS108E before 2017-05-11, GSS116E before 2017-05-11, XS708Ev2 before 2017-05-11, and XS716E before 2017-05-11.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear Jgs516pe Firmware | <2017-05-11 | |
NETGEAR JGS516PE | ||
Netgear Jgs524e Firmware | <2017-05-11 | |
Netgear Jgs524e | =v2 | |
Netgear Jgs524pe Firmware | <2017-05-11 | |
Netgear Jgs524pe | ||
Netgear Gs105e Firmware | <2017-05-11 | |
Netgear Gs105e | =v2 | |
Netgear Gs105pe Firmware | <2017-05-11 | |
Netgear Gs105pe | ||
Netgear Gs108e Firmware | <2017-05-11 | |
Netgear Gs108e | =v3 | |
Netgear Gs108pe Firmware | <2017-05-11 | |
NETGEAR GS108PE | =v3 | |
Netgear Gs116e Firmware | <2017-05-11 | |
Netgear Gs116e | =v2 | |
Netgear Gss108e Firmware | <2017-05-11 | |
Netgear Gss108e | ||
Netgear Gss116e Firmware | <2017-05-11 | |
Netgear Gss116e | ||
Netgear Xs708e Firmware | <2017-05-11 | |
Netgear Xs708e | =v2 | |
Netgear Xs716e Firmware | <2017-05-11 | |
Netgear Xs716e |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
JGS516PE, JGS524Ev2, JGS524PE, GS105Ev2, GS105PE, GS108Ev3, GS108PEv3, GS116Ev2, GSS108E, GSS116E, XS708E, and XS716E.
The severity of CVE-2017-18862 is medium, with a CVSS score of 6.5.
CVE-2017-18862 allows an attacker to bypass authentication on certain NETGEAR devices.
To fix CVE-2017-18862, update the firmware of the affected NETGEAR devices to a version released after May 11, 2017.
More information about CVE-2017-18862 can be found in the Netgear security advisory.