CVE-2017-18845

Vulnerability

NETGEAR R6700v2 and R6800 routers running firmware versions prior to 1.1.0.38 are affected by an admin credential disclosure vulnerability [1]. The vulnerability resides in the firmware and allows an attacker with local network access to obtain administrative credentials without authentication [1].

Exploitation

An attacker needs local network access to the affected router (CVSS vector AV:L/AC:L/PR:N/UI:N) [1]. The exact exploitation method is not detailed in the advisory, but it likely involves accessing a vulnerable service or interface on the device to retrieve stored credentials [1]. No user interaction or privileges are required [1].

Impact

Successful exploitation leads to disclosure of administrative credentials, granting the attacker full control over the router. This can result in complete compromise of confidentiality, integrity, and availability of the device and potentially the network it serves [1]. The CVSS v3 base score is 8.4 (High) [1].

Mitigation

The vulnerability is fixed in firmware version 1.1.0.38 for both R6700v2 and R6800 models [1]. NETGEAR strongly recommends users download and install the latest firmware from the NETGEAR Support website [1]. No workarounds are provided; upgrading is the only mitigation [1].