Vulnerabilities > CVE-2017-18836 - Unspecified vulnerability in Netgear products

CVSS 6.2 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

netgear

NVD

Published: 2020-04-20

Updated: 2020-04-23

Summary

Certain NETGEAR devices are affected by denial of service. This affects M4300-28G before 12.0.2.15, M4300-52G before 12.0.2.15, M4300-28G-POE+ before 12.0.2.15, M4300-52G-POE+ before 12.0.2.15, M4300-8X8F before 12.0.2.15, M4300-12X12F before 12.0.2.15, M4300-24X24F before 12.0.2.15, M4300-24X before 12.0.2.15, M4300-48X before 12.0.2.15, and M4200 before 12.0.2.15.

Vulnerable Configurations

Part	Description	Count
OS	Netgear Netgear M4300 28G Firmware 12.0.2.11 Netgear M4300 52G Firmware 12.0.2.11 Netgear M4300 28G Poe+ Firmware 12.0.2.11 Netgear M4300 52G Poe+ Firmware 12.0.2.11 Netgear M4300 8X8F Firmware 12.0.2.11 Netgear M4300 12X12F Firmware 12.0.2.11 Netgear M4300 24X24F Firmware 12.0.2.11 Netgear M4300 24X Firmware 12.0.2.11 Netgear M4300 48X Firmware 12.0.2.11 Netgear M4200 Firmware 12.0.2.10	10
Hardware	Netgear Netgear M4300 28G - Netgear M4300 52G - Netgear M4300 28G Poe+ - Netgear M4300 52G Poe+ - Netgear M4300 8X8F - Netgear M4300 12X12F - Netgear M4300 24X24F - Netgear M4300 24X - Netgear M4300 48X - Netgear M4200 -	10

References

https://kb.netgear.com/000049026/Security-Advisory-for-Denial-of-Service-on-Some-Fully-Managed-Switches-PSV-2017-1959