Details of VAR-202004-1711

ID

VAR-202004-1711

CVE

CVE-2018-21200

TITLE

NETGEAR R7800 and R9000 Out-of-bounds write vulnerabilities in devices

Trust: 0.8

sources: JVNDB: JVNDB-2018-016349

DESCRIPTION

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R7800 before 1.0.2.40 and R9000 before 1.0.3.6. NETGEAR R7800 and R9000 The device is vulnerable to out-of-bounds writes.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. Both NETGEAR R9000 and NETGEAR R7800 are wireless routers from NETGEAR. The vulnerability stems from the fact that when the network system or product performs operations on the memory, the data boundary is not correctly verified, resulting in incorrect read and write operations to other associated memory locations. Attackers can use this vulnerability to cause buffer overflow or heap overflow. This affects R7800 prior to 1.0.2.40 and R9000 prior to 1.0.3.6

Trust: 2.25

sources: NVD: CVE-2018-21200 // JVNDB: JVNDB-2018-016349 // CNVD: CNVD-2021-46352 // VULMON: CVE-2018-21200

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-46352

AFFECTED PRODUCTS

vendor:	netgear	model:	r7800	scope:	lt	version:	1.0.2.40	Trust: 1.6
vendor:	netgear	model:	r9000	scope:	lt	version:	1.0.3.6	Trust: 1.6
vendor:	netgear	model:	r7800	scope:	eq	version:	1.0.2.40	Trust: 0.8
vendor:	netgear	model:	r9000	scope:	eq	version:	1.0.3.6	Trust: 0.8
vendor:	netgear	model:	r7800	scope:	eq	version:	1.0.2.16	Trust: 0.1
vendor:	netgear	model:	r7800	scope:	eq	version:	1.0.2.28	Trust: 0.1
vendor:	netgear	model:	r7800	scope:	eq	version:	1.0.2.30	Trust: 0.1
vendor:	netgear	model:	r7800	scope:	eq	version:	1.0.2.32	Trust: 0.1
vendor:	netgear	model:	r7800	scope:	eq	version:	1.0.2.36	Trust: 0.1
vendor:	netgear	model:	r7800	scope:	eq	version:	1.0.2.38	Trust: 0.1
vendor:	netgear	model:	r9000	scope:	eq	version:	-	Trust: 0.1
vendor:	netgear	model:	r9000	scope:	eq	version:	1.0.2.4	Trust: 0.1
vendor:	netgear	model:	r9000	scope:	eq	version:	1.0.2.30	Trust: 0.1
vendor:	netgear	model:	r9000	scope:	eq	version:	1.0.2.40	Trust: 0.1
vendor:	netgear	model:	r9000	scope:	eq	version:	1.0.2.52	Trust: 0.1

sources: CNVD: CNVD-2021-46352 // VULMON: CVE-2018-21200 // JVNDB: JVNDB-2018-016349 // NVD: CVE-2018-21200

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-21200
value:	MEDIUM
Trust: 1.0
cve@mitre.org:	CVE-2018-21200
value:	MEDIUM
Trust: 1.0
NVD:	JVNDB-2018-016349
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2021-46352
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-202004-2266
value:	MEDIUM
Trust: 0.6
VULMON:	CVE-2018-21200
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2018-21200
severity:	MEDIUM
baseScore:	5.2
vectorString:	AV:A/AC:L/AU:S/C:P/I:P/A:P
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	5.1
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.1
NVD:	JVNDB-2018-016349
severity:	MEDIUM
baseScore:	5.2
vectorString:	AV:A/AC:L/AU:S/C:P/I:P/A:P
accessVector:	ADJACENT NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2021-46352
severity:	MEDIUM
baseScore:	5.2
vectorString:	AV:A/AC:L/AU:S/C:P/I:P/A:P
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	5.1
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2018-21200
baseSeverity:	MEDIUM
baseScore:	6.8
vectorString:	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.9
impactScore:	5.9
version:	3.1
Trust: 1.0
cve@mitre.org:	CVE-2018-21200
baseSeverity:	MEDIUM
baseScore:	6.8
vectorString:	CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.9
impactScore:	5.9
version:	3.0
Trust: 1.0
NVD:	JVNDB-2018-016349
baseSeverity:	MEDIUM
baseScore:	6.8
vectorString:	CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2021-46352 // VULMON: CVE-2018-21200 // JVNDB: JVNDB-2018-016349 // CNNVD: CNNVD-202004-2266 // NVD: CVE-2018-21200 // NVD: CVE-2018-21200

PROBLEMTYPE DATA

problemtype:

CWE-787

Trust: 1.8

sources: JVNDB: JVNDB-2018-016349 // NVD: CVE-2018-21200

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-202004-2266

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-202004-2266

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-016349

PATCH

title:	Security Advisory for Post-Authentication Stack Overflow on Some Routers, PSV-2017-2592	url:	https://kb.netgear.com/000055149/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-Some-Routers-PSV-2017-2592	Trust: 0.8
title:	Patch for NETGEAR R9000 and R7800 buffer overflow vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/275826	Trust: 0.6
title:	NETGEAR R9000 and R7800 Buffer error vulnerability fix	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=117358	Trust: 0.6

sources: CNVD: CNVD-2021-46352 // JVNDB: JVNDB-2018-016349 // CNNVD: CNNVD-202004-2266

EXTERNAL IDS

db:	NVD	id:	CVE-2018-21200	Trust: 3.1
db:	JVNDB	id:	JVNDB-2018-016349	Trust: 0.8
db:	CNVD	id:	CNVD-2021-46352	Trust: 0.6
db:	CNNVD	id:	CNNVD-202004-2266	Trust: 0.6
db:	VULMON	id:	CVE-2018-21200	Trust: 0.1

sources: CNVD: CNVD-2021-46352 // VULMON: CVE-2018-21200 // JVNDB: JVNDB-2018-016349 // CNNVD: CNNVD-202004-2266 // NVD: CVE-2018-21200

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2018-21200	Trust: 2.0
url:	https://kb.netgear.com/000055149/security-advisory-for-post-authentication-stack-overflow-on-some-routers-psv-2017-2592	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-21200	Trust: 0.8
url:	https://cwe.mitre.org/data/definitions/787.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: CNVD: CNVD-2021-46352 // VULMON: CVE-2018-21200 // JVNDB: JVNDB-2018-016349 // CNNVD: CNNVD-202004-2266 // NVD: CVE-2018-21200

SOURCES

db:	CNVD	id:	CNVD-2021-46352
db:	VULMON	id:	CVE-2018-21200
db:	JVNDB	id:	JVNDB-2018-016349
db:	CNNVD	id:	CNNVD-202004-2266
db:	NVD	id:	CVE-2018-21200

LAST UPDATE DATE

2024-11-23T22:41:06.337000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2021-46352	date:	2021-07-01T00:00:00
db:	VULMON	id:	CVE-2018-21200	date:	2020-05-01T00:00:00
db:	JVNDB	id:	JVNDB-2018-016349	date:	2020-06-01T00:00:00
db:	CNNVD	id:	CNNVD-202004-2266	date:	2020-05-06T00:00:00
db:	NVD	id:	CVE-2018-21200	date:	2024-11-21T04:03:09.540

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2021-46352	date:	2021-06-27T00:00:00
db:	VULMON	id:	CVE-2018-21200	date:	2020-04-28T00:00:00
db:	JVNDB	id:	JVNDB-2018-016349	date:	2020-06-01T00:00:00
db:	CNNVD	id:	CNNVD-202004-2266	date:	2020-04-28T00:00:00
db:	NVD	id:	CVE-2018-21200	date:	2020-04-28T16:15:13.217