CVE-2017-18746

Vulnerability

The vulnerability is a security misconfiguration in the firmware of multiple NETGEAR Wi-Fi extender models. Affected models and firmware versions are: EX3700 before 1.0.0.64, EX3800 before 1.0.0.64, EX6000 before 1.0.0.24, EX6130 before 1.0.0.16, EX6400 before 1.0.1.60, EX7000 before 1.0.0.50, EX7300 before 1.0.1.60, and WN2500RPv2 before 1.0.1.46 [1]. The specific misconfigured setting is not detailed in the advisory, but it allows unintended exposure of device configurations or services.

Exploitation

An attacker on the same local network can exploit this misconfiguration without authentication. The CVSS vector indicates the attack is over the adjacent network (AV:A), requires no privileges (PR:N), and no user interaction (UI:N) is needed [1]. The attacker can send crafted requests to the vulnerable extender to gain unauthorized access to the misconfigured settings or data.

Impact

Successful exploitation could allow an attacker to read sensitive information (confidentiality impact: LOW) and potentially modify certain settings (integrity impact: LOW) [1]. The scope is changed (S:C), meaning the compromise may affect resources beyond the original component. No remote code execution or full device takeover is indicated in the advisory.

Mitigation

NETGEAR has released fixed firmware versions for all affected models: EX3700 firmware 1.0.0.64, EX3800 firmware 1.0.0.64, EX6000 firmware 1.0.0.24, EX6130 firmware 1.0.0.16, EX6400 firmware 1.0.1.60, EX7000 firmware 1.0.0.50, EX7300 firmware 1.0.1.60, and WN2500RPv2 firmware 1.0.1.46. Users should update to these versions as soon as possible [1]. No workaround is provided besides applying the firmware update.