CVE-2017-18779
Description
Certain NETGEAR devices are affected by a buffer overflow. This affects D6200 before 1.1.00.24, D7000 before 1.0.1.52, JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.12, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.20, R6020 before 1.0.0.26, R6050 before 1.0.1.12, R6080 before 1.0.0.26, R6120 before 1.0.0.36, R6220 before 1.1.0.60, R6700v2 before 1.2.0.12, R6800 before 1.2.0.12, R6900v2 before 1.2.0.12, WNDR3700v5 before 1.1.0.50, WNR1000v4 before 1.1.0.44, WNR2020 before 1.1.0.44, and WNR2050 before 1.1.0.44.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A buffer overflow vulnerability in multiple NETGEAR routers allows remote attackers to cause a denial of service or possibly execute code. Fixed firmware is available for all affected models.
Vulnerability
A buffer overflow vulnerability exists in the firmware of multiple NETGEAR routers, including D6200, D7000, JNR1010v2, JR6150, JWNR2010v5, PR2000, R6020, R6050, R6080, R6120, R6220, R6700v2, R6800, R6900v2, WNDR3700v5, WNR1000v4, WNR2020, and WNR2050. The affected firmware versions are those prior to the fixed versions listed in the advisory. The vulnerability may be triggered by specially crafted network traffic or other inputs, leading to memory corruption. No authentication is required for exploitation [1].
Exploitation
An attacker can exploit this vulnerability remotely without authentication. By sending specially crafted packets or requests to an affected device, the attacker can trigger a buffer overflow condition. No user interaction is required [1].
Impact
Successful exploitation can cause a denial of service or potentially allow arbitrary code execution. The attacker could gain full control of the affected device, leading to compromise of network traffic and connected devices [1].
Mitigation
NETGEAR has released fixed firmware versions for all affected models. Users should immediately download and install the latest firmware from the NETGEAR Support website for their specific device. The fixed versions are: D6200 (1.1.00.24), D7000 (1.0.1.52), JNR1010v2 (1.1.0.44), JR6150 (1.0.1.12), JWNR2010v5 (1.1.0.44), PR2000 (1.0.0.20), R6020 (1.0.0.26), R6050 (1.0.1.12), R6080 (1.0.0.26), R6120 (1.0.0.36), R6220 (1.1.0.60), R6700v2 (1.2.0.12), R6800 (1.2.0.12), R6900v2 (1.2.0.12), WNDR3700v5 (1.1.0.50), WNR1000v4 (1.1.0.44), WNR2020 (1.1.0.44), and WNR2050 (1.1.0.44) [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4- NETGEAR/NETGEAR devicesdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- kb.netgear.com/000049541/Security-Advisory-for-Buffer-Overflow-on-Some-Routers-PSV-2017-2956mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.