CVE-2018-21133

CRITICAL

NETGEAR WAC505 and WAC510 Firmware < 5.0.0.17 - Unauthenticated Stack-based Buffer Overflow

Title source: llm

Description

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects WAC505 before 5.0.0.17 and WAC510 before 5.0.0.17.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://kb.netgear.com/000060227/Security-Advisory-for-Pre-Authentication-Stack-Overflow-on-Some-Wireless-Access-Points-PSV-2018-0326

Scores

CVSS v3 9.8

EPSS 0.0056

EPSS Percentile 68.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (2)

netgear/wac505_firmware < 5.0.0.17

netgear/wac510_firmware < 5.0.0.17

Published Apr 23, 2020

Tracked Since Feb 18, 2026