CVE-2017-18808
Description
NETGEAR ReadyNAS OS 6 devices running ReadyNAS OS versions prior to 6.8.0 are affected by incorrect configuration of security settings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
NETGEAR ReadyNAS OS 6 devices before version 6.8.0 have a security misconfiguration that can lead to limited CIA compromise.
Vulnerability
A security misconfiguration vulnerability affects all NETGEAR ReadyNAS OS 6 devices running firmware versions prior to 6.8.0 [1]. The vulnerability stems from incorrect configuration of security settings, though the specific configuration element is not disclosed in the available reference [1].
Exploitation
An attacker must have local access to the device and administrative privileges (AV:L/AC:L/PR:H) to exploit this vulnerability [1]. No user interaction is required. The exact exploitation steps are not detailed in the referenced advisory [1].
Impact
Successful exploitation allows an attacker with high privileges to compromise confidentiality, integrity, and availability at a low level (CVSS v3 base score 4.2, vector CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L) [1].
Mitigation
NETGEAR released fixed firmware version 6.8.0 [1]. Users should download and install the latest firmware for their specific ReadyNAS OS 6 model from NETGEAR Support [1]. No workarounds are provided in the advisory [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- NETGEAR/ReadyNAS OS 6description
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.