Vulnerabilities > CVE-2018-21133 - Out-of-bounds Write vulnerability in Netgear Wac505 Firmware and Wac510 Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

netgear

CWE-787

critical

NVD

Published: 2020-04-23

Updated: 2021-08-10

Summary

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects WAC505 before 5.0.0.17 and WAC510 before 5.0.0.17.

Vulnerable Configurations

Part	Description	Count
OS	Netgear Netgear Wac505 Firmware - Netgear Wac510 Firmware 1.3.0.10	2
Hardware	Netgear Netgear Wac505 - Netgear Wac510 -	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://kb.netgear.com/000060227/Security-Advisory-for-Pre-Authentication-Stack-Overflow-on-Some-Wireless-Access-Points-PSV-2018-0326