CVE-2017-18860

{"id": "CVE-2017-18860", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 5.2, "exploitabilityScore": 2.5}]}, "published": "2020-04-29T14:15:14.013", "references": [{"url": "https://kb.netgear.com/000038519/Security-Advisory-for-Authentication-Bypass-and-Remote-Command-Execution-on-Some-Smart-and-Managed-Switches-PSV-2017-0857", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-74"}]}], "descriptions": [{"lang": "en", "value": "Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier, GS716Tv2 5.4.2.27 and earlier, GS716Tv3 6.3.1.16 and earlier, GS724Tv3 5.4.2.27 and earlier, GS724Tv4 6.3.1.16 and earlier, GS728TPSB 5.3.0.29 and earlier, GS728TSB 5.3.0.29 and earlier, GS728TXS 6.1.0.35 and earlier, GS748Tv4 5.4.2.27 and earlier, GS748Tv5 6.3.1.16 and earlier, GS752TPSB 5.3.0.29 and earlier, GS752TSB 5.3.0.29 and earlier, GS752TXS 6.1.0.35 and earlier, M4200 12.0.2.10 and earlier, M4300 12.0.2.10 and earlier, M5300 11.0.0.28 and earlier, M6100 11.0.0.28 and earlier, M7100 11.0.0.28 and earlier, S3300 6.6.1.4 and earlier, XS708T 6.6.0.11 and earlier, XS712T 6.1.0.34 and earlier, and XS716T 6.6.0.11 and earlier."}, {"lang": "es", "value": "Determinados dispositivos NETGEAR est\u00e1n afectados por una ejecuci\u00f3n de comandos de depuraci\u00f3n. Esto afecta a FS752TP versiones 5.4.2.19 y anteriores, GS108Tv2 versiones 5.4.2.29 y anteriores, GS110TP versiones 5.4.2.29 y anteriores, GS418TPP versiones 6.6.2.6 y anteriores, GS510TLP versiones 6.6.2.6 y anteriores, GS510TP versiones 5.04.2.27 y anteriores, GS510TPP versiones 6.6.2.6 y anteriores, GS716Tv2 versiones 5.4.2.27 y anteriores, GS716Tv3 versiones 6.3.1.16 y anteriores, GS724Tv3 versiones 5.4.2.27 y anteriores, GS724Tv4 versiones 6.3.1.16 y anteriores, GS728TPSB versiones 5.3.0.29 y anteriores, GS728TSB versiones 5.3.0.29 y anteriores, GS728TXS versiones 6.1.0. 35 y anteriores, GS748Tv4 versiones 5.4.2.27 y anteriores, GS748Tv5 versiones 6.3.1.16 y anteriores, GS752TPSB versiones 5.3.0.29 y anteriores, GS752TSB versiones 5.3.0.29 y anteriores, GS752TXS versiones 6.1.0.35 y anteriores, M4200 versiones 12.0.2.10 y anteriores, M4300 versiones 12.0.2. 10 y anteriores, M5300 versiones 11.0.0.28 y anteriores, M6100 versiones 11.0.0.28 y anteriores, M7100 versiones 11.0.0.28 y anteriores, S3300 versiones 6.6.1.4 y anteriores, XS708T versiones 6.6.0.11 y anteriores, XS712T versiones 6.1.0.34 y anteriores, y XS716T versiones 6.6.0.11 y anteriores."}], "lastModified": "2022-01-04T16:53:10.060", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:fs752tp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCAF6CBC-713C-4BCD-BA73-29BD5E6B2CC0", "versionEndIncluding": "5.4.2.19"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:fs752tp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AA58F24F-EC29-4592-BAD6-F7710F897E76"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs108t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07615C61-628A-4168-AEB5-BBEB8E14D039", "versionEndIncluding": "5.4.2.29"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs108tv2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3A9045AE-E205-4FE2-9DD8-51EFA8D9B7EF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs110tp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57C21A5F-460B-41AF-8C81-59B5C39AFF6F", "versionEndIncluding": "5.4.2.29"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs110tp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F3949875-D8ED-4280-B1C7-123674774C3C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs418tpp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A3D5437-B5F7-4C11-9935-D95A848DF84D", "versionEndIncluding": "6.6.2.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs418tpp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9DFF539E-3159-4479-9BC5-AD2A5239415F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs510tlp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C26847F-3523-4455-90AB-A84E2422247D", "versionEndIncluding": "6.6.2.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs510tlp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B7F54D4D-EB69-4B6A-B2D1-7D8013AB04D1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs510tp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4D4AE3C-6585-406D-B596-A9933AA8B57C", "versionEndIncluding": "5.04.2.27"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs510tp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7ED4BF26-254F-4550-8B8B-5F90CD4A2556"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs510tpp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57DD367F-50E8-48A2-B44F-FD6AE99A7BEF", "versionEndIncluding": "6.6.2.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs510tpp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CE9C4447-DFC2-40B8-AD47-F7D8DDD34570"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs716t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BAC7EA9C-0A45-40A4-85A9-563E8922ACB5", "versionEndIncluding": "5.4.2.27"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs716t:v2:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5B93D08F-4C7B-4DE6-A72A-5AAAC3E42F29"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs716t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47770B21-3153-4B10-817F-D47442D7C3BF", "versionEndIncluding": "6.3.1.16"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs716t:v3:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4B048480-9790-4267-9C12-ABADA7646A9F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs724t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A21595F4-961A-42BE-A530-3304F23C5A24", "versionEndIncluding": "5.4.2.27"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs724t:v3:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "15240AAD-9CDF-4E78-A43D-0AD0A21F0A05"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs724t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29FDAE41-1436-4695-9E40-68DC5050910B", "versionEndIncluding": "6.3.1.16"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs724t:v4:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8EF8C3CE-84D9-4BEE-85AE-82D8346BDECD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs728tpsb_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF656382-57CD-4017-859E-3A6FFD3E66AF", "versionEndIncluding": "5.3.0.29"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs728tpsb:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CBECB631-64D3-4944-8E45-683FF12C1D89"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs728tsb_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30712720-94B0-4212-88C0-A5D9DC36C9A0", "versionEndIncluding": "5.3.0.29"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs728tsb:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "73D5C8B5-E199-43E3-9C17-FBF55D916F8D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs728txs_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69D579C0-A6FA-4200-9866-99C8E02BACC3", "versionEndIncluding": "6.1.0.35"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs728txs:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AB931A26-A4F1-4170-AA66-188C29B46AFB"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs748t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7BC428D3-868A-421D-8AD8-1D8AF1522D82", "versionEndIncluding": "5.4.2.27"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs748t:v4:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BED8AA40-EC6E-4652-A6F8-57856EBDC16A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs748t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81FEC177-54A7-4D62-B6B8-53FA193B5D24", "versionEndIncluding": "6.3.1.16"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs748t:v5:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C47152C0-F85E-4073-BE49-9DDF1C99E828"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs752tpsb_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B8EA70D-EE90-41D9-978C-4377B49AA3FA", "versionEndIncluding": "5.3.0.29"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs752tpsb:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4CD6B178-367D-446C-9EE9-5B2940AE6956"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs752tsb_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6B92FCC-AD30-4C5B-AB31-12C564FB36B5", "versionEndIncluding": "5.3.0.29"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs752tsb:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CE5F207F-9977-4390-AB85-EAE8B385E87D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:gs752txs_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09F17244-9B03-4F30-B565-2A4F21EB6793", "versionEndIncluding": "6.1.0.35"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:gs752txs:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FF2BD166-0AF7-48FE-B677-B5D28672DA74"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:m4200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBBD796E-9525-468B-81D1-9A848B3862D3", "versionEndIncluding": "12.0.2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:m4200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "80617DBE-44F0-44E1-B59A-9456D4995C8B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:m4300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04C8ED4F-822D-4BE5-AB37-D18B779C5AC8", "versionEndIncluding": "12.0.2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:m4300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C28AC8BD-6DDA-481B-A1E9-466A04FB9680"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:m5300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EA50A8A-FCF6-46F9-8E79-6A44ACF74CE7", "versionEndIncluding": "11.0.0.28"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:m5300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D10DCF81-D2AD-403C-AAB8-97ED936FD458"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:m6100_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D7FAA5A-D2FC-4D29-B741-B13DD7F7974F", "versionEndIncluding": "11.0.0.28"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:m6100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1CFDB23F-9895-42E4-88A1-83FE4A6D0709"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:m7100_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E191EAA-A1D4-4629-B16B-AE1B5C8028A0", "versionEndIncluding": "11.0.0.28"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:m7100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D5C43A67-C198-48C3-9CDB-6B2039C306B0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:s3300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E1ED353-91DC-4A25-995A-0AEFB5B1AC3D", "versionEndIncluding": "6.6.1.4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:s3300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "880C8ABD-7469-4D24-8878-D4BA299F890B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:xs708t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4C1664B-4794-4FC1-BF9F-A1329E572BDE", "versionEndIncluding": "6.6.0.11"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:xs708t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D78D4126-20E7-43C2-BD98-2BEAF2A5FD1D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:xs712t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06EE98ED-4348-4999-8259-493855582249", "versionEndIncluding": "6.1.0.34"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:xs712t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "67E3C3C9-946B-4490-B018-152FF64C7A6F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:xs716t_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE8C9DD2-A69A-40B4-9AD1-E0F5B002877B", "versionEndIncluding": "6.6.0.11"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:xs716t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE86C949-F8F4-43FB-9089-9E0BE95A5FF4"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}