CVE-2017-18765

EUVD-2017-9856
Certain NETGEAR devices are affected by denial of service. This affects R6300v2 before 1.0.4.8, R6400 before 1.0.1.22, R6400v2 before 1.0.2.32, R6700 before 1.0.1.20, R6900 before 1.0.1.20, WNR3500Lv2 before 1.2.0.44, and WNR2000v2 before 1.2.0.8.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.0/AC:L/AV:A/A:H/C:N/I:N/PR:N/S:U/UI:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
Affected Products (NVD)
VendorProductVersion
netgearr6300_firmware
𝑥
< 1.0.4.8
netgearr6400_firmware
𝑥
< 1.0.1.22
netgearr6400_firmware
𝑥
< 1.0.2.32
netgearr6700_firmware
𝑥
< 1.0.1.20
netgearr6900_firmware
𝑥
< 1.0.1.20
netgearwnr3500l_firmware
𝑥
< 1.2.0.44
netgearwnr2000_firmware
𝑥
< 1.2.0.8
𝑥
= Vulnerable software versions
References
https://kb.netgear.com/000051480/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2017-0648
https://kb.netgear.com/000051480/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2017-0648