Authentication Bypass Vulnerability in NETGEAR Routers and Gateways
CVE-2017-18776

8.4HIGH

Key Information:

Vendor: Netgear
Status: D6100 Firmware
Vendor: CVE Published:; 22 April 2020

Summary

Several NETGEAR router and gateway models are susceptible to an authentication bypass vulnerability, which could enable unauthorized users to gain access or control over the device. This vulnerability affects specific versions of popular NETGEAR products, allowing potential intruders to bypass standard authentication mechanisms. It is crucial for users to review their device firmware and implement necessary updates to mitigate this risk. For detailed guidance, refer to the NETGEAR Security Advisory.

References

https://kb.netgear.com/000049552/Security-Advisory-for-Au...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 22, 2020
Vulnerability Reserved
Apr 20, 2020