CVE-2017-18867

Vulnerability

A security misconfiguration exists in the firmware of several NETGEAR routers and gateways. The exact nature of the misconfiguration is not detailed in the advisory, but it affects the following models: D6100 before firmware version 1.0.0.55, D7800 before V1.0.1.24, R7100LG before V1.0.0.32, WNDR4300v1 before 1.0.2.90, and WNDR4500v3 before 1.0.0.48 [1]. The vulnerability is present in the default configuration of these devices.

Exploitation

An attacker must have physical access to the affected device (CVSS vector AV:P) [1]. No authentication or user interaction is required. The attacker can exploit the misconfiguration by connecting to the device's local interface or by manipulating hardware settings, though the specific exploitation steps are not publicly disclosed.

Impact

Successful exploitation allows an attacker to compromise the confidentiality, integrity, and availability of the device, potentially gaining full administrative control. The CVSS v3 score is 6.8 (Medium) with a vector of AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [1].

Mitigation

NETGEAR has released fixed firmware versions for all affected models: D6100 firmware 1.0.0.55, D7800 firmware V1.0.1.24, R7100LG firmware V1.0.0.32, WNDR4300v1 firmware 1.0.2.90, and WNDR4500v3 firmware 1.0.0.48 [1]. Users should upgrade to the latest firmware as soon as possible. No workarounds are provided.