CVE-2017-18819
Description
NETGEAR ReadyNAS OS 6 devices, running ReadyNAS OS versions prior to 6.8.0 are affected by incorrect configuration of security settings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
NETGEAR ReadyNAS OS 6 devices before 6.8.0 contain a security misconfiguration that allows local information disclosure.
Vulnerability
A security misconfiguration vulnerability affects all NETGEAR ReadyNAS OS 6 devices running firmware versions prior to 6.8.0 [1]. The vulnerability stems from incorrect security settings in the operating system configuration [1].
Exploitation
An attacker with local access to the device can exploit this vulnerability without needing authentication or user interaction [1]. The attack vector is local (AV:L) and the complexity is low (AC:L) [1]. No privileges are required (PR:N) and no user interaction is needed (UI:N) [1].
Impact
Successful exploitation leads to limited information disclosure, specifically a low impact on confidentiality [1]. The vulnerability does not affect integrity or availability [1]. The CVSS v3 score is 4.0 (Medium) [1].
Mitigation
NETGEAR released a fix in ReadyNAS OS version 6.8.0 [1]. Users should update their devices to this firmware version or later by visiting NETGEAR Support and downloading the latest firmware [1]. No workarounds are provided [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- NETGEAR/ReadyNAS OSdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.