CVE-2018-21216: Buffer Overflow
First published: Tue Apr 28 2020(Updated: )
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D6100 before 1.0.0.56, and R6100 before 1.0.1.20.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NETGEAR R6100 firmware | <1.0.1.20 | |
| NETGEAR R6100 firmware | ||
| NETGEAR D6000 firmware | <1.0.0.67 | |
| NETGEAR D6000 firmware | ||
| NETGEAR D3600 firmware | <1.0.0.67 | |
| NETGEAR D3600 firmware | ||
| NETGEAR D6100 firmware | <1.0.0.56 | |
| NETGEAR D6100 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this buffer overflow vulnerability?
The vulnerability ID is CVE-2018-21216.
Which devices are affected by this buffer overflow vulnerability?
Certain NETGEAR devices including D3600, D6000, D6100, and R6100 are affected.
What is the severity rating of CVE-2018-21216?
The severity rating is 8.8 (High).
How can an attacker exploit this vulnerability?
An unauthenticated attacker can exploit this vulnerability by sending a specially crafted buffer overflow attack.
Is there a fix available for CVE-2018-21216?
Yes, Netgear has released firmware updates to address this vulnerability. Please refer to the Netgear security advisory for more information.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/author
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/netgear
- canonical/netgear r6100 firmware
- canonical/netgear d6000 firmware
- canonical/netgear d3600 firmware
- canonical/netgear d6100 firmware