CVE-2017-18815

Vulnerability

A stored cross-site scripting (XSS) vulnerability exists in NETGEAR ReadyNAS OS 6 devices running versions prior to 6.8.0 [1]. The vulnerability allows an attacker to inject malicious scripts into the application, which are then stored and served to other users, potentially leading to further compromise.

Exploitation

To exploit this vulnerability, an attacker must have a user account with high privileges (e.g., admin) on the ReadyNAS device and then convince a victim user into interacting with a crafted payload [1]. The attack vector is local, and user interaction is required, per the CVSS vector [1]. The exact sequence of steps is not publicly detailed, but the attacker can inject malicious script via input fields that are not properly sanitized.

Impact

Successful exploitation allows the attacker to execute arbitrary JavaScript in the context of the victim's browser [1]. This can lead to disclosure of sensitive information, session hijacking, or other client-side attacks that affect the integrity and availability of the user's interaction with the device [1]. The CVSS v3 score of 5.2 (Medium) reflects limited impact on confidentiality, integrity, and availability (C:L/I:L/A:L) [1].

Mitigation

NETGEAR has released firmware version 6.8.0 for all ReadyNAS OS 6 devices to fix this vulnerability [1]. Users should download and install the latest firmware from NETGEAR Support as soon as possible [1]. No workarounds are provided other than upgrading to the patched version.