CVE-2017-18844

Vulnerability

An administrative credential disclosure vulnerability exists in certain NETGEAR devices, including the R6700v2, R6800, and D7000. The affected firmware versions are R6700v2 and R6800 before 1.1.0.38, and D7000 before 1.0.1.50 [1]. The vulnerability allows disclosure of administrative credentials to an unauthenticated attacker who has local network access.

Exploitation

An unauthenticated attacker with local network access to the affected router can exploit this vulnerability to disclose the administrative credentials [1]. No authentication or user interaction is required. The vector is local, meaning the attacker must be on the same network as the device.

Impact

Successful exploitation leads to the disclosure of administrative credentials, granting the attacker high privileges on the device. This can result in a complete compromise of confidentiality, integrity, and availability, with the attacker potentially gaining full control of the router [1].

Mitigation

NETGEAR has released firmware fixes for all affected models: R6700v2 firmware version 1.1.0.38, R6800 firmware version 1.1.0.38, and D7000 firmware version 1.0.1.50 [1]. Users should download and install the latest firmware from NETGEAR Support as soon as possible. No workarounds are available other than applying the firmware update.