CVE-2018-21137
First published: Thu Apr 23 2020(Updated: )
Certain NETGEAR devices are affected by a hardcoded password. This affects D3600 before 1.0.0.76 and D6000 before 1.0.0.76.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear D3600 Firmware | <1.0.0.76 | |
| NETGEAR D3600 | ||
| Netgear D6000 Firmware | <1.0.0.76 | |
| Netgear D6000 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the hardcoded password in certain NETGEAR devices?
The vulnerability ID for the hardcoded password in certain NETGEAR devices is CVE-2018-21137.
Which NETGEAR devices are affected by the hardcoded password vulnerability?
The NETGEAR devices affected by the hardcoded password vulnerability are D3600 before 1.0.0.76 and D6000 before 1.0.0.76.
What is the severity rating of CVE-2018-21137?
The severity rating of CVE-2018-21137 is 9.8 (Critical).
How can I fix the hardcoded password vulnerability in my NETGEAR device?
To fix the hardcoded password vulnerability, update your NETGEAR D3600 or D6000 firmware to version 1.0.0.76 or above.
Where can I find more information about the hardcoded password vulnerability in NETGEAR devices?
You can find more information about the hardcoded password vulnerability in NETGEAR devices in the security advisory at https://kb.netgear.com/000060223/Security-Advisory-for-Hardcoded-Password-on-Some-Modem-Routers-PSV-2018-0099.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/author
- agent/severity
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- vendor/netgear
- canonical/netgear d3600 firmware
- canonical/netgear d3600
- canonical/netgear d6000 firmware
- canonical/netgear d6000