CVE-2017-18725
Description
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6200 before 1.1.00.24. R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 before 1.1.0.42.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An unauthenticated, adjacent attacker can cause a stack-based buffer overflow on multiple NETGEAR devices, leading to complete compromise.
Vulnerability
A stack-based buffer overflow exists in the pre-authentication code of certain NETGEAR devices. Affected models: D6200 before 1.1.00.24, R6700v2 before 1.1.0.42, R6800 before 1.1.0.42, and R6900v2 before 1.1.0.42 [1].
Exploitation
An unauthenticated attacker with adjacent network access can trigger the overflow without any authentication or user interaction. The vulnerability is reachable before authentication [1].
Impact
Successful exploitation allows arbitrary code execution with high privileges, leading to full compromise of confidentiality, integrity, and availability. The CVSS v3 score is 8.8 (High) [1].
Mitigation
NETGEAR has released firmware fixes: D6200 firmware 1.1.00.24, and for R6700v2, R6800, and R6900v2 firmware 1.1.0.42. Users should update immediately [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
5- NETGEAR/D6200description
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.