CVE-2017-18867
MEDIUMNETGEAR D6100 D7800 R7100LG WNDR4300 WNDR4500 - Security Misconfiguration
Title source: llmDescription
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6100 before 1.0.0.55, D7800 before V1.0.1.24, R7100LG before V1.0.0.32, WNDR4300v1 before 1.0.2.90, and WNDR4500v3 before 1.0.0.48.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://kb.netgear.com/000049554/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-and-Gateways-PSV-2017-2198
Scores
CVSS v3
6.8
EPSS
0.0006
EPSS Percentile
18.0%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (5)
netgear/d6100_firmware
< 1.0.0.55
netgear/d7800_firmware
< 1.0.1.24
netgear/r7100lg_firmware
< 1.0.0.32
netgear/wndr4300_firmware
< 1.0.2.90
netgear/wndr4500_firmware
< 1.0.0.48
Published
May 05, 2020
Tracked Since
Feb 18, 2026