CVE-2017-18843
Description
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects R6700v2 before 1.1.0.38, R6800 before 1.1.0.38, and D7000 before 1.0.1.50.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
NETGEAR R6700v2, R6800, and D7000 devices have a vulnerability that allows disclosure of administrative credentials to unauthenticated attackers on the local network, fixed in firmware updates.
Vulnerability
The vulnerability is an admin credential disclosure in NETGEAR R6700v2, R6800, and D7000 devices. It affects firmware versions prior to 1.1.0.38 for R6700v2 and R6800, and prior to 1.0.1.50 for D7000 [1].
Exploitation
An unauthenticated attacker with local network access can exploit this vulnerability to disclose administrative credentials. No user interaction is required [1].
Impact
Successful exploitation leads to disclosure of administrative credentials, allowing the attacker to gain full control of the device, resulting in high impact on confidentiality, integrity, and availability [1].
Mitigation
NETGEAR released fixed firmware: R6700v2 firmware version 1.1.0.38, R6800 firmware version 1.1.0.38, and D7000 firmware version 1.0.1.50. Users should download and install the latest firmware from NETGEAR Support [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4- NETGEAR/R6700v2description
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.