CVE-2017-18705

Vulnerability

A security misconfiguration vulnerability exists in the firmware of several NETGEAR router and gateway models. Affected devices have incorrect security settings that expose administrative functionality to the local network. The following models are impacted: D7800 before 1.0.1.28, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.20, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.88, WNDR4300 before 1.0.2.90, WNDR4300v2 before 1.0.0.48, WNDR4500v3 before 1.0.0.48, and WNR2000v5 before 1.0.0.62 [1].

Exploitation

An attacker must be within wireless range or physically connected to the local network (adjacent access). No authentication or user interaction is required. By sending crafted network requests to the vulnerable device, the attacker can exploit the misconfigured security settings to access protected functionality [1].

Impact

Successful exploitation can lead to full compromise of the affected device, including disclosure of sensitive information, unauthorized modification of device configuration, and potential remote code execution. The CVSS v3 score is 8.8 (High) with a vector of AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating high impact on confidentiality, integrity, and availability [1].

Mitigation

NETGEAR has released fixed firmware versions for all affected models. Users should update to the latest firmware as listed: D7800 1.0.1.28, R6100 1.0.1.20, R7500 1.0.0.118, R7500v2 1.0.3.20, R7800 1.0.2.40, R9000 1.0.2.52, WNDR3700v4 1.0.2.88, WNDR4300 1.0.2.90, WNDR4300v2 1.0.0.48, WNDR4500v3 1.0.0.48, and WNR2000v5 1.0.0.62. Firmware can be downloaded from the NETGEAR Support website [1].