CVE-2017-18759
Description
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R8300 before 1.0.2.104 and R8500 before 1.0.2.104.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Authenticated stack buffer overflow in NETGEAR R8300/R8500 before 1.0.2.104 allows arbitrary code execution.
Vulnerability
A stack-based buffer overflow vulnerability exists in the firmware of NETGEAR R8300 and R8500 routers prior to version 1.0.2.104. The flaw can be triggered by an authenticated user, potentially leading to arbitrary code execution. Only devices with firmware versions before 1.0.2.104 are affected [1].
Exploitation
An attacker must be authenticated to the device and have network access (Adjacent Network as per CVSS vector). No user interaction is required. The attacker can send specially crafted input that overflows a stack buffer, overwriting critical data or return addresses [1].
Impact
Successful exploitation allows the attacker to execute arbitrary code with high privileges, leading to complete compromise of confidentiality, integrity, and availability (CVSS v3 Score: 6.8, Vector: AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H) [1].
Mitigation
NETGEAR released firmware version 1.0.2.104 to fix the vulnerability. Users should download and install the latest firmware from NETGEAR Support. No workarounds are available. It is critical to apply the update as soon as possible [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.