Security Misconfiguration in NETGEAR ReadyNAS OS 6 Devices
CVE-2017-18819

4MEDIUM

Key Information:

Vendor: Netgear
Status: Readynas Os
Vendor: CVE Published:; 21 April 2020

Summary

NETGEAR ReadyNAS OS 6 devices with versions prior to 6.8.0 are impacted by a security misconfiguration. This vulnerability results from improper settings, which could allow unauthorized access or manipulation of the device settings. Users of affected models are advised to upgrade to at least version 6.8.0 to mitigate this risk. For more details, refer to the NETGEAR security advisory.

References

https://kb.netgear.com/000049046/Security-Advisory-for-Se...

x_refsource_CONFIRM

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 21, 2020
Vulnerability Reserved
Apr 20, 2020