CVE-2018-21184

MEDIUM

NETGEAR D6100/D7800/R7500/R7800/R9000 - Authenticated Stack-based Buffer Overflow

Title source: llm

Description

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, D7800 before 1.0.1.28, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, and R9000 before 1.0.3.6.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://kb.netgear.com/000055174/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-Some-Routers-and-Gateways-PSV-2017-2615

Scores

CVSS v3 6.8

EPSS 0.0009

EPSS Percentile 26.1%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (5)

netgear/d6100_firmware < 1.0.0.57

netgear/d7800_firmware < 1.0.1.28

netgear/r7500_firmware < 1.0.3.24

netgear/r7800_firmware < 1.0.2.40

netgear/r9000_firmware < 1.0.3.6

Published Apr 28, 2020

Tracked Since Feb 18, 2026