Lucene search

NetgearCVE-2018-11106

HistoryApr 01, 2020 - 5:15 p.m.

CVE-2018-11106

2020-04-0117:15:14

CWE-77

netgear

web.nvd.nist.gov

netgear

pre-authentication

command injection

security vulnerability

fix

wc7500

wc7520

wc7600

wc9500

firmware versions

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.004

Percentile

74.6%

JSON

NETGEAR has released fixes for a pre-authentication command injection in request_handler.php security vulnerability on the following product models: WC7500, running firmware versions prior to 6.5.3.5; WC7520, running firmware versions prior to 2.5.0.46; WC7600v1, running firmware versions prior to 6.5.3.5; WC7600v2, running firmware versions prior to 6.5.3.5; and WC9500, running firmware versions prior to 6.5.3.5.

Affected configurations

Nvd

Node

netgearwc7500_firmwareRange<6.5.3.5

AND

netgearwc7500Match-

Node

netgearwc7520_firmwareRange<2.5.0.46

AND

netgearwc7520Match-

Node

netgearwc7600v1_firmwareRange<6.5.3.5

AND

netgearwc7600v1Match-

Node

netgearwc7600v2_firmwareRange<6.5.3.5

AND

netgearwc7600v2Match-

Node

netgearwc9500_firmwareRange<6.5.3.5

AND

netgearwc9500Match-

VendorProductVersionCPE
netgearwc7500_firmware*cpe:2.3:o:netgear:wc7500_firmware:*:*:*:*:*:*:*:*
netgearwc7500-cpe:2.3:h:netgear:wc7500:-:*:*:*:*:*:*:*
netgearwc7520_firmware*cpe:2.3:o:netgear:wc7520_firmware:*:*:*:*:*:*:*:*
netgearwc7520-cpe:2.3:h:netgear:wc7520:-:*:*:*:*:*:*:*
netgearwc7600v1_firmware*cpe:2.3:o:netgear:wc7600v1_firmware:*:*:*:*:*:*:*:*
netgearwc7600v1-cpe:2.3:h:netgear:wc7600v1:-:*:*:*:*:*:*:*
netgearwc7600v2_firmware*cpe:2.3:o:netgear:wc7600v2_firmware:*:*:*:*:*:*:*:*
netgearwc7600v2-cpe:2.3:h:netgear:wc7600v2:-:*:*:*:*:*:*:*
netgearwc9500_firmware*cpe:2.3:o:netgear:wc9500_firmware:*:*:*:*:*:*:*:*
netgearwc9500-cpe:2.3:h:netgear:wc9500:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
netgear	wc7500_firmware	*	cpe:2.3:o:netgear:wc7500_firmware::::::::
netgear	wc7500	-	cpe:2.3:h:netgear:wc7500:-:::::::*
netgear	wc7520_firmware	*	cpe:2.3:o:netgear:wc7520_firmware::::::::
netgear	wc7520	-	cpe:2.3:h:netgear:wc7520:-:::::::*
netgear	wc7600v1_firmware	*	cpe:2.3:o:netgear:wc7600v1_firmware::::::::
netgear	wc7600v1	-	cpe:2.3:h:netgear:wc7600v1:-:::::::*
netgear	wc7600v2_firmware	*	cpe:2.3:o:netgear:wc7600v2_firmware::::::::
netgear	wc7600v2	-	cpe:2.3:h:netgear:wc7600v2:-:::::::*
netgear	wc9500_firmware	*	cpe:2.3:o:netgear:wc9500_firmware::::::::
netgear	wc9500	-	cpe:2.3:h:netgear:wc9500:-:::::::*

CNA Affected

[
  {
    "product": "WC7500",
    "vendor": "NETGEAR",
    "versions": [
      {
        "status": "affected",
        "version": "firmware versions prior to 6.5.3.5"
      }
    ]
  },
  {
    "product": "WC7520",
    "vendor": "NETGEAR",
    "versions": [
      {
        "status": "affected",
        "version": "firmware versions prior to 2.5.0.46"
      }
    ]
  },
  {
    "product": "WC7600v1",
    "vendor": "NETGEAR",
    "versions": [
      {
        "status": "affected",
        "version": "firmware versions prior to 6.5.3.5"
      }
    ]
  },
  {
    "product": "WC7600v2",
    "vendor": "NETGEAR",
    "versions": [
      {
        "status": "affected",
        "version": "firmware versions prior to 6.5.3.5"
      }
    ]
  },
  {
    "product": "WC9500",
    "vendor": "NETGEAR",
    "versions": [
      {
        "status": "affected",
        "version": "firmware versions prior to 6.5.3.5"
      }
    ]
  }
]

References

kb.netgear.com/000058243/Security-Advisory-for-Pre-Authentication-Command-Injection-in-request-handler-php-on-Some-Wireless-Controllers-PSV-2018-0051

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.004

Percentile

74.6%

JSON

Related for CVE-2018-11106