Vulnerability Details CVE-2018-21221
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, and R9000 before 1.0.2.52.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.6%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 5.8
References
Products affected by CVE-2018-21221
-
cpe:2.3:h:netgear:d3600:-
-
cpe:2.3:h:netgear:d6000:-
-
cpe:2.3:h:netgear:r9000:-
-
cpe:2.3:o:netgear:d3600_firmware:-
-
cpe:2.3:o:netgear:d3600_firmware:1.0.0.49
-
cpe:2.3:o:netgear:d3600_firmware:1.0.0.61
-
cpe:2.3:o:netgear:d3600_firmware:_1.0.0.49
-
cpe:2.3:o:netgear:d6000_firmware:-
-
cpe:2.3:o:netgear:d6000_firmware:1.0.0.49
-
cpe:2.3:o:netgear:d6000_firmware:1.0.0.61
-
cpe:2.3:o:netgear:r9000_firmware:-
-
cpe:2.3:o:netgear:r9000_firmware:1.0.2.30
-
cpe:2.3:o:netgear:r9000_firmware:1.0.2.4
-
cpe:2.3:o:netgear:r9000_firmware:1.0.2.40