Vulnerability Details CVE-2017-18852
Certain NETGEAR devices are affected by CSRF and authentication bypass. This affects R7300DST before 1.0.0.54, R8300 before 1.0.2.100_1.0.82, R8500 before 1.0.2.100_1.0.82, and WNDR3400v3 before 1.0.1.14.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.7%
CVSS Severity
CVSS v3 Score 8.4
CVSS v2 Score 6.8
References
Products affected by CVE-2017-18852
-
cpe:2.3:h:netgear:r7300dst:-
-
cpe:2.3:h:netgear:r8300:-
-
cpe:2.3:h:netgear:r8500:-
-
cpe:2.3:h:netgear:wndr3400:v3
-
cpe:2.3:o:netgear:r7300dst_firmware:-
-
cpe:2.3:o:netgear:r7300dst_firmware:1.0.0.44
-
cpe:2.3:o:netgear:r7300dst_firmware:1.0.0.46
-
cpe:2.3:o:netgear:r7300dst_firmware:1.0.0.52
-
cpe:2.3:o:netgear:r8300_firmware:-
-
cpe:2.3:o:netgear:r8300_firmware:1.0.2.74
-
cpe:2.3:o:netgear:r8300_firmware:1.0.2.86
-
cpe:2.3:o:netgear:r8300_firmware:1.0.2.94
-
cpe:2.3:o:netgear:r8500_firmware:-
-
cpe:2.3:o:netgear:r8500_firmware:1.0.2.100
-
cpe:2.3:o:netgear:r8500_firmware:1.0.2.74
-
cpe:2.3:o:netgear:r8500_firmware:1.0.2.86
-
cpe:2.3:o:netgear:r8500_firmware:1.0.2.94
-
cpe:2.3:o:netgear:wndr3400_firmware:-
-
cpe:2.3:o:netgear:wndr3400_firmware:1.0.1.12
-
cpe:2.3:o:netgear:wndr3400_firmware:1.0.1.8