CVE-2017-18768

Certain NETGEAR devices are affected by CSRF. This affects EX6100 before 1.0.2.16_1.1.130, EX6100v2 before 1.0.1.70, EX6150v2 before 1.0.1.54, EX6200v2 before 1.0.1.50, EX6400 before 1.0.1.60, EX7300 before 1.0.1.60, and WN3000RPv3 before 1.0.2.44.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:netgear:ex6100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6100:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:netgear:ex6100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6100:v2:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:netgear:ex6150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6150:v2:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:netgear:ex6200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6200:v2:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:netgear:ex6400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6400:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:netgear:ex7300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7300:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:netgear:wn3000rp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wn3000rp:v3:*:*:*:*:*:*:*

History

21 Nov 2024, 03:20

Type Values Removed Values Added
References () https://kb.netgear.com/000051475/Security-Advisory-for-Cross-Site-Request-Forgery-on-Some-Extenders-PSV-2016-0130 - Vendor Advisory () https://kb.netgear.com/000051475/Security-Advisory-for-Cross-Site-Request-Forgery-on-Some-Extenders-PSV-2016-0130 - Vendor Advisory

Information

Published : 2020-04-22 16:15

Updated : 2024-11-21 03:20


NVD link : CVE-2017-18768

Mitre link : CVE-2017-18768

CVE.ORG link : CVE-2017-18768


JSON object : View

Products Affected

netgear

  • ex6400_firmware
  • wn3000rp
  • ex6150
  • ex6150_firmware
  • ex6200
  • wn3000rp_firmware
  • ex6200_firmware
  • ex7300
  • ex6100
  • ex7300_firmware
  • ex6400
  • ex6100_firmware
CWE
CWE-352

Cross-Site Request Forgery (CSRF)