CVE-2017-18862

Certain NETGEAR devices are affected by authentication bypass. This affects JGS516PE before 2017-05-11, JGS524Ev2 before 2017-05-11, JGS524PE before 2017-05-11, GS105Ev2 before 2017-05-11, GS105PE before 2017-05-11, GS108Ev3 before 2017-05-11, GS108PEv3 before 2017-05-11, GS116Ev2 before 2017-05-11, GSS108E before 2017-05-11, GSS116E before 2017-05-11, XS708Ev2 before 2017-05-11, and XS716E before 2017-05-11.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:netgear:jgs516pe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:jgs516pe:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:netgear:jgs524e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:jgs524e:v2:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:netgear:jgs524pe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:jgs524pe:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:netgear:gs105e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:gs105e:v2:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:netgear:gs105pe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:gs105pe:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:netgear:gs108e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:gs108e:v3:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:netgear:gs108pe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:gs108pe:v3:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:netgear:gs116e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:gs116e:v2:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:netgear:gss108e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:gss108e:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:netgear:gss116e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:gss116e:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:netgear:xs708e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xs708e:v2:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:netgear:xs716e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xs716e:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:21

Type Values Removed Values Added
References () https://kb.netgear.com/000037849/Security-Advisory-for-Authentication-Bypass-on-ProSAFE-Web-Managed-Switches-PSV-2015-0043 - Vendor Advisory () https://kb.netgear.com/000037849/Security-Advisory-for-Authentication-Bypass-on-ProSAFE-Web-Managed-Switches-PSV-2015-0043 - Vendor Advisory

Information

Published : 2020-04-28 16:15

Updated : 2024-11-21 03:21


NVD link : CVE-2017-18862

Mitre link : CVE-2017-18862

CVE.ORG link : CVE-2017-18862


JSON object : View

Products Affected

netgear

  • xs716e_firmware
  • jgs524e
  • xs716e
  • xs708e_firmware
  • jgs524pe
  • gs105e_firmware
  • xs708e
  • gss108e_firmware
  • gs116e
  • jgs516pe_firmware
  • jgs524pe_firmware
  • gs108e_firmware
  • gs108pe_firmware
  • jgs516pe
  • gs105pe_firmware
  • gss116e_firmware
  • gs116e_firmware
  • gss116e
  • jgs524e_firmware
  • gs108pe
  • gs105pe
  • gs108e
  • gs105e
  • gss108e
CWE
CWE-287

Improper Authentication