CVE-2018-21199

Vulnerability

This vulnerability is a stack-based buffer overflow that affects certain NETGEAR devices. It resides in the firmware of the following models and versions: D7800 before 1.0.1.30, R6100 before 1.0.1.22, R7500 before 1.0.0.122, R7500v2 before 1.0.3.24, R7800 before 1.0.2.40, R9000 before 1.0.2.52, and WNDR4300 before 1.0.2.98. The vulnerability requires the attacker to be an authenticated user [1].

Exploitation

An attacker must first authenticate to the device's management interface. Once authenticated, the attacker can send a specially crafted request that triggers a stack-based buffer overflow. The attacker does not require user interaction and can exploit the vulnerability over a local area network [1].

Impact

Successful exploitation could result in a denial-of-service condition, or potentially allow the attacker to execute arbitrary code with the privileges of the affected process. The CVSS v3 vector (AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H) indicates a high impact on confidentiality, integrity, and availability, but the overall severity is rated as Medium (score 6.8) due to the requirement for high privileges [1].

Mitigation

NETGEAR has released fixed firmware versions for all affected models. Users should upgrade to the following versions: D7800 to 1.0.1.30, R6100 to 1.0.1.22, R7500 to 1.0.0.122, R7500v2 to 1.0.3.24, R7800 to 1.0.2.40, R9000 to 1.0.2.52, and WNDR4300 to 1.0.2.98. No workarounds are provided; upgrading is the recommended mitigation [1].