Search criteria
2 vulnerabilities found for gs108tv2 by netgear
VAR-202112-2392
Vulnerability from variot - Updated: 2024-11-23 22:44Certain NETGEAR devices are affected by command injection by an authenticated user. This affects GS108Tv2 before 5.4.2.36, GS110TPP before 7.0.7.2, GS110TPv2 before 5.4.2.36., GS110TPv3 before 7.0.7.2, GS308T before 1.0.3.2, GS310TP before 1.0.3.2, GS724TPP before 2.0.6.3, GS724TPv2 before 2.0.6.3, GS728TPPv2 before 6.0.8.2, GS728TPv2 before 6.0.8.2, GS752TPP before 6.0.8.2, GS752TPv2 before 6.0.8.2, MS510TXM before 1.0.4.2, and MS510TXUP before 1.0.4.2. plural NETGEAR A command injection vulnerability exists in the device.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. This affects GS108Tv2 prior to 5.4.2.36, GS110TPP prior to 7.0.7.2, GS110TPv2 prior to 5.4.2.36., GS110TPv3 prior to 7.0.7.2, GS308T prior to 1.0.3.2, GS310TP prior to 1.0.3.2, GS724TPP prior to 2.0.6.3, GS724TPv2 prior to 2.0.6.3, GS728TPPv2 prior to 6.0.8.2, GS728TPv2 prior to 6.0.8.2, GS752TPP prior to 6.0.8.2, GS752TPv2 prior to 6.0.8.2, MS510TXM prior to 1.0.4.2, and MS510TXUP prior to 1.0.4.2
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202112-2392",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ms510txm",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "1.0.4.2"
},
{
"model": "gs724tpp",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "2.0.6.3"
},
{
"model": "gs110tpp",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "7.0.7.2"
},
{
"model": "gs110tpv3",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "7.0.7.2"
},
{
"model": "gs752tpp",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "6.0.8.2"
},
{
"model": "gs728tppv2",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "6.0.8.2"
},
{
"model": "gs752tpv2",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "6.0.8.2"
},
{
"model": "gs728tpv2",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "6.0.8.2"
},
{
"model": "gs724tpv2",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "2.0.6.3"
},
{
"model": "gs308t",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "1.0.3.2"
},
{
"model": "ms510txup",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "1.0.4.2"
},
{
"model": "gs108tv2",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.36"
},
{
"model": "gs110tpv2",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.36"
},
{
"model": "gs310tp",
"scope": "lt",
"trust": 1.0,
"vendor": "netgear",
"version": "1.0.3.2"
},
{
"model": "gs310tp",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs308t",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs728tppv2",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs110tpv2",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs110tpv3",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs724tpv2",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs110tpp",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs728tpv2",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs724tpp",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
},
{
"model": "gs108tv2",
"scope": null,
"trust": 0.8,
"vendor": "\u30cd\u30c3\u30c8\u30ae\u30a2",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"cve": "CVE-2021-45556",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.0,
"id": "CVE-2021-45556",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.8,
"id": "CVE-2021-45556",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "HIGH",
"attackVector": "ADJACENT",
"author": "cve@mitre.org",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"exploitabilityScore": 1.0,
"id": "CVE-2021-45556",
"impactScore": 6.0,
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 8.8,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2021-45556",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "Low",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2021-45556",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "cve@mitre.org",
"id": "CVE-2021-45556",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2021-45556",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-202112-2372",
"trust": 0.6,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "CNNVD",
"id": "CNNVD-202112-2372"
},
{
"db": "NVD",
"id": "CVE-2021-45556"
},
{
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Certain NETGEAR devices are affected by command injection by an authenticated user. This affects GS108Tv2 before 5.4.2.36, GS110TPP before 7.0.7.2, GS110TPv2 before 5.4.2.36., GS110TPv3 before 7.0.7.2, GS308T before 1.0.3.2, GS310TP before 1.0.3.2, GS724TPP before 2.0.6.3, GS724TPv2 before 2.0.6.3, GS728TPPv2 before 6.0.8.2, GS728TPv2 before 6.0.8.2, GS752TPP before 6.0.8.2, GS752TPv2 before 6.0.8.2, MS510TXM before 1.0.4.2, and MS510TXUP before 1.0.4.2. plural NETGEAR A command injection vulnerability exists in the device.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. This affects GS108Tv2 prior to 5.4.2.36, GS110TPP prior to 7.0.7.2, GS110TPv2 prior to 5.4.2.36., GS110TPv3 prior to 7.0.7.2, GS308T prior to 1.0.3.2, GS310TP prior to 1.0.3.2, GS724TPP prior to 2.0.6.3, GS724TPv2 prior to 2.0.6.3, GS728TPPv2 prior to 6.0.8.2, GS728TPv2 prior to 6.0.8.2, GS752TPP prior to 6.0.8.2, GS752TPv2 prior to 6.0.8.2, MS510TXM prior to 1.0.4.2, and MS510TXUP prior to 1.0.4.2",
"sources": [
{
"db": "NVD",
"id": "CVE-2021-45556"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "VULMON",
"id": "CVE-2021-45556"
}
],
"trust": 1.71
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2021-45556",
"trust": 3.3
},
{
"db": "JVNDB",
"id": "JVNDB-2021-017572",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-202112-2372",
"trust": 0.6
},
{
"db": "VULMON",
"id": "CVE-2021-45556",
"trust": 0.1
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2021-45556"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "CNNVD",
"id": "CNNVD-202112-2372"
},
{
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"id": "VAR-202112-2392",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.6424417246153845
},
"last_update_date": "2024-11-23T22:44:06.919000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Security\u00a0Advisory\u00a0for\u00a0Post-Authentication\u00a0Command\u00a0Injection\u00a0on\u00a0Some\u00a0Smart\u00a0Managed\u00a0Pro\u00a0Switches,\u00a0PSV-2021-0175",
"trust": 0.8,
"url": "https://kb.netgear.com/000064534/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Smart-Managed-Pro-Switches-PSV-2021-0175"
},
{
"title": "Netgear NETGEAR Security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=176664"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "CNNVD",
"id": "CNNVD-202112-2372"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-77",
"trust": 1.0
},
{
"problemtype": "Command injection (CWE-77) [NVD evaluation ]",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.7,
"url": "https://kb.netgear.com/000064534/security-advisory-for-post-authentication-command-injection-on-some-smart-managed-pro-switches-psv-2021-0175"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2021-45556"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2021-45556"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "CNNVD",
"id": "CNNVD-202112-2372"
},
{
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULMON",
"id": "CVE-2021-45556"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"db": "CNNVD",
"id": "CNNVD-202112-2372"
},
{
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-12-26T00:00:00",
"db": "VULMON",
"id": "CVE-2021-45556"
},
{
"date": "2023-01-27T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"date": "2021-12-26T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202112-2372"
},
{
"date": "2021-12-26T01:15:15.660000",
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-12-27T00:00:00",
"db": "VULMON",
"id": "CVE-2021-45556"
},
{
"date": "2023-01-27T01:39:00",
"db": "JVNDB",
"id": "JVNDB-2021-017572"
},
{
"date": "2022-01-11T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202112-2372"
},
{
"date": "2024-11-21T06:32:30.637000",
"db": "NVD",
"id": "CVE-2021-45556"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202112-2372"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural \u00a0NETGEAR\u00a0 Command injection vulnerability in device",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-017572"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "command injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202112-2372"
}
],
"trust": 0.6
}
}
VAR-202004-1332
Vulnerability from variot - Updated: 2024-11-23 22:21Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier, GS716Tv2 5.4.2.27 and earlier, GS716Tv3 6.3.1.16 and earlier, GS724Tv3 5.4.2.27 and earlier, GS724Tv4 6.3.1.16 and earlier, GS728TPSB 5.3.0.29 and earlier, GS728TSB 5.3.0.29 and earlier, GS728TXS 6.1.0.35 and earlier, GS748Tv4 5.4.2.27 and earlier, GS748Tv5 6.3.1.16 and earlier, GS752TPSB 5.3.0.29 and earlier, GS752TSB 5.3.0.29 and earlier, GS752TXS 6.1.0.35 and earlier, M4200 12.0.2.10 and earlier, M4300 12.0.2.10 and earlier, M5300 11.0.0.28 and earlier, M6100 11.0.0.28 and earlier, M7100 11.0.0.28 and earlier, S3300 6.6.1.4 and earlier, XS708T 6.6.0.11 and earlier, XS712T 6.1.0.34 and earlier, and XS716T 6.6.0.11 and earlier. plural NETGEAR A device contains an injection vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be put into a state. NETGEAR FS752TP, etc. are all products of NETGEAR. NETGEAR FS752TP is a stackable smart switch. NETGEAR GS108T is an intelligent management switch. NETGEAR M6100 is a fully managed switch.
There are security holes in many NETGEAR products. Attackers can use the specially crafted URL to exploit the vulnerability to execute commands on the switch. This affects FS752TP 5.4.2.19 and previous versions, GS108Tv2 5.4.2.29 and previous versions, GS110TP 5.4.2.29 and previous versions, GS418TPP 6.6.2.6 and previous versions, GS510TLP 6.6.2.6 and previous versions, GS510TP 5.04.2.27 and previous versions, GS510TPP 6.6.2.6 and previous versions, GS716Tv2 5.4.2.27 and previous versions, GS716Tv3 6.3.1.16 and previous versions, GS724Tv3 5.4.2.27 and previous versions, GS724Tv4 6.3.1.16 and previous versions, GS728TPSB 5.3.0.29 and previous versions, GS728TSB 5.3.0.29 and previous versions, GS728TXS 6.1.0.35 and previous versions, GS748Tv4 5.4.2.27 and previous versions, GS748Tv5 6.3.1.16 and previous versions, GS752TPSB 5.3.0.29 and previous versions, GS752TSB 5.3.0.29 and previous versions, GS752TXS 6.1.0.35 and previous versions, M4200 12.0.2.10 and previous versions, M4300 12.0.2.10 and previous versions, M5300 11.0.0.28 and previous versions, M6100 11.0.0.28 and previous versions, M7100 11.0.0.28 and previous versions, S3300 6.6.1.4 and previous versions, XS708T 6.6.0.11 and previous versions, XS712T 6.1.0.34 and previous versions, and XS716T 6.6.0.11 and previous versions
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202004-1332",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "gs724t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.27"
},
{
"model": "gs510tlp",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.6.2.6"
},
{
"model": "fs752tp",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.19"
},
{
"model": "gs716t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.3.1.16"
},
{
"model": "xs708t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.6.0.11"
},
{
"model": "xs716t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.6.0.11"
},
{
"model": "gs748t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.27"
},
{
"model": "gs728txs",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.1.0.35"
},
{
"model": "gs724t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.3.1.16"
},
{
"model": "gs728tsb",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "m5300",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "11.0.0.28"
},
{
"model": "gs110tp",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.29"
},
{
"model": "m4200",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "12.0.2.10"
},
{
"model": "gs752txs",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.1.0.35"
},
{
"model": "gs108t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.29"
},
{
"model": "gs748t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.3.1.16"
},
{
"model": "gs752tsb",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "xs712t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.1.0.34"
},
{
"model": "m7100",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "11.0.0.28"
},
{
"model": "gs716t",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.4.2.27"
},
{
"model": "s3300",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.6.1.4"
},
{
"model": "gs728tpsb",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "gs752tpsb",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "m4300",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "12.0.2.10"
},
{
"model": "gs510tp",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "5.04.2.27"
},
{
"model": "gs418tpp",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.6.2.6"
},
{
"model": "gs510tpp",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "6.6.2.6"
},
{
"model": "m6100",
"scope": "lte",
"trust": 1.0,
"vendor": "netgear",
"version": "11.0.0.28"
},
{
"model": "fs752tp",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "5.4.2.19"
},
{
"model": "gs108t",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "5.4.2.29"
},
{
"model": "gs110tp",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "5.4.2.29"
},
{
"model": "gs418tpp",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "6.6.2.6"
},
{
"model": "gs510tlp",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "6.6.2.6"
},
{
"model": "gs510tp",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "5.04.2.27"
},
{
"model": "gs510tpp",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "6.6.2.6"
},
{
"model": "gs716t",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "5.4.2.27"
},
{
"model": "gs716t",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "6.3.1.16"
},
{
"model": "gs724t",
"scope": "eq",
"trust": 0.9,
"vendor": "netgear",
"version": "5.4.2.27"
},
{
"model": "fs752tp",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.4.2.19"
},
{
"model": "gs108tv2",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.4.2.29"
},
{
"model": "gs110tp",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.4.2.29"
},
{
"model": "gs418tpp",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.6.2.6"
},
{
"model": "gs510tlp",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.6.2.6"
},
{
"model": "gs510tp",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.04.2.27"
},
{
"model": "gs510tpp",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.6.2.6"
},
{
"model": "gs716tv2",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.4.2.27"
},
{
"model": "gs716tv3",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.3.1.16"
},
{
"model": "gs724tv3",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.4.2.27"
},
{
"model": "gs724tv4",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.3.1.16"
},
{
"model": "gs728tpsb",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.3.0.29"
},
{
"model": "gs728tsb",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.3.0.29"
},
{
"model": "gs728txs",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.1.0.35"
},
{
"model": "gs748tv4",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.4.2.27"
},
{
"model": "gs748tv5",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.3.1.16"
},
{
"model": "gs752tpsb",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.3.0.29"
},
{
"model": "gs752tsb",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=5.3.0.29"
},
{
"model": "gs752txs",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.1.0.35"
},
{
"model": "m4200",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=12.0.2.10"
},
{
"model": "m4300",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=12.0.2.10"
},
{
"model": "m5300",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=11.0.0.28"
},
{
"model": "m6100",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=11.0.0.28"
},
{
"model": "m7100",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=11.0.0.28"
},
{
"model": "s3300",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.6.1.4"
},
{
"model": "xs708t",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.6.0.11"
},
{
"model": "xs712t",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.1.0.34"
},
{
"model": "xs716t",
"scope": "lte",
"trust": 0.6,
"vendor": "netgear",
"version": "\u003c=6.6.0.11"
},
{
"model": "gs724t",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.3.1.16"
},
{
"model": "gs728tpsb",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "gs728tsb",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "gs728txs",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.1.0.35"
},
{
"model": "gs748t",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "5.4.2.27"
},
{
"model": "gs748t",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.3.1.16"
},
{
"model": "gs752tpsb",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "gs752tsb",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "5.3.0.29"
},
{
"model": "gs752txs",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.1.0.35"
},
{
"model": "m4200",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "12.0.2.10"
},
{
"model": "m4300",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "12.0.2.10"
},
{
"model": "m5300",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "11.0.0.28"
},
{
"model": "m6100",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "11.0.0.28"
},
{
"model": "m7100",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "11.0.0.28"
},
{
"model": "s3300",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.6.1.4"
},
{
"model": "xs708t",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.6.0.11"
},
{
"model": "xs712t",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.1.0.34"
},
{
"model": "xs716t",
"scope": "eq",
"trust": 0.1,
"vendor": "netgear",
"version": "6.6.0.11"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"db": "VULMON",
"id": "CVE-2017-18860"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:netgear:fs752tp_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs108t_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs110tp_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs418tpp_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs510tlp_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs510tp_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs510tpp_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs716t_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:netgear:gs724t_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
}
]
},
"cve": "CVE-2017-18860",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 3.6,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"id": "CVE-2017-18860",
"impactScore": 4.9,
"integrityImpact": "PARTIAL",
"severity": "LOW",
"trust": 1.1,
"vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Local",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 3.6,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "JVNDB-2017-014985",
"impactScore": null,
"integrityImpact": "Partial",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Low",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 6.6,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"id": "CNVD-2020-30574",
"impactScore": 9.2,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:L/AC:L/Au:N/C:N/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 2.5,
"id": "CVE-2017-18860",
"impactScore": 5.2,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Local",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 7.7,
"baseSeverity": "High",
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "JVNDB-2017-014985",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2017-18860",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "JVNDB-2017-014985",
"trust": 0.8,
"value": "High"
},
{
"author": "CNVD",
"id": "CNVD-2020-30574",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-202004-2386",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2017-18860",
"trust": 0.1,
"value": "LOW"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"db": "VULMON",
"id": "CVE-2017-18860"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "CNNVD",
"id": "CNNVD-202004-2386"
},
{
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier, GS716Tv2 5.4.2.27 and earlier, GS716Tv3 6.3.1.16 and earlier, GS724Tv3 5.4.2.27 and earlier, GS724Tv4 6.3.1.16 and earlier, GS728TPSB 5.3.0.29 and earlier, GS728TSB 5.3.0.29 and earlier, GS728TXS 6.1.0.35 and earlier, GS748Tv4 5.4.2.27 and earlier, GS748Tv5 6.3.1.16 and earlier, GS752TPSB 5.3.0.29 and earlier, GS752TSB 5.3.0.29 and earlier, GS752TXS 6.1.0.35 and earlier, M4200 12.0.2.10 and earlier, M4300 12.0.2.10 and earlier, M5300 11.0.0.28 and earlier, M6100 11.0.0.28 and earlier, M7100 11.0.0.28 and earlier, S3300 6.6.1.4 and earlier, XS708T 6.6.0.11 and earlier, XS712T 6.1.0.34 and earlier, and XS716T 6.6.0.11 and earlier. plural NETGEAR A device contains an injection vulnerability.Information is tampered with and service operation is interrupted (DoS) It may be put into a state. NETGEAR FS752TP, etc. are all products of NETGEAR. NETGEAR FS752TP is a stackable smart switch. NETGEAR GS108T is an intelligent management switch. NETGEAR M6100 is a fully managed switch. \n\r\n\r\nThere are security holes in many NETGEAR products. Attackers can use the specially crafted URL to exploit the vulnerability to execute commands on the switch. This affects FS752TP 5.4.2.19 and previous versions, GS108Tv2 5.4.2.29 and previous versions, GS110TP 5.4.2.29 and previous versions, GS418TPP 6.6.2.6 and previous versions, GS510TLP 6.6.2.6 and previous versions, GS510TP 5.04.2.27 and previous versions, GS510TPP 6.6.2.6 and previous versions, GS716Tv2 5.4.2.27 and previous versions, GS716Tv3 6.3.1.16 and previous versions, GS724Tv3 5.4.2.27 and previous versions, GS724Tv4 6.3.1.16 and previous versions, GS728TPSB 5.3.0.29 and previous versions, GS728TSB 5.3.0.29 and previous versions, GS728TXS 6.1.0.35 and previous versions, GS748Tv4 5.4.2.27 and previous versions, GS748Tv5 6.3.1.16 and previous versions, GS752TPSB 5.3.0.29 and previous versions, GS752TSB 5.3.0.29 and previous versions, GS752TXS 6.1.0.35 and previous versions, M4200 12.0.2.10 and previous versions, M4300 12.0.2.10 and previous versions, M5300 11.0.0.28 and previous versions, M6100 11.0.0.28 and previous versions, M7100 11.0.0.28 and previous versions, S3300 6.6.1.4 and previous versions, XS708T 6.6.0.11 and previous versions, XS712T 6.1.0.34 and previous versions, and XS716T 6.6.0.11 and previous versions",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-18860"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"db": "VULMON",
"id": "CVE-2017-18860"
}
],
"trust": 2.25
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2017-18860",
"trust": 3.1
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985",
"trust": 0.8
},
{
"db": "CNVD",
"id": "CNVD-2020-30574",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202004-2386",
"trust": 0.6
},
{
"db": "VULMON",
"id": "CVE-2017-18860",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"db": "VULMON",
"id": "CVE-2017-18860"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "CNNVD",
"id": "CNNVD-202004-2386"
},
{
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"id": "VAR-202004-1332",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
}
],
"trust": 1.3429854174074074
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
}
]
},
"last_update_date": "2024-11-23T22:21:12.834000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Security Advisory for Authentication Bypass and Remote Command Execution on Some Smart and Managed Switches, PSV-2017-0857",
"trust": 0.8,
"url": "https://kb.netgear.com/000038519/Security-Advisory-for-Authentication-Bypass-and-Remote-Command-Execution-on-Some-Smart-and-Managed-Switches-PSV-2017-0857"
},
{
"title": "Patch for Multiple NETGEAR product injection vulnerabilities (CNVD-2020-30574)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/219291"
},
{
"title": "Multiple NETGEAR Fixing measures for product injection vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=117761"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "CNNVD",
"id": "CNNVD-202004-2386"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-74",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.0,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-18860"
},
{
"trust": 1.7,
"url": "https://kb.netgear.com/000038519/security-advisory-for-authentication-bypass-and-remote-command-execution-on-some-smart-and-managed-switches-psv-2017-0857"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-18860"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/74.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"db": "VULMON",
"id": "CVE-2017-18860"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "CNNVD",
"id": "CNNVD-202004-2386"
},
{
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"db": "VULMON",
"id": "CVE-2017-18860"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"db": "CNNVD",
"id": "CNNVD-202004-2386"
},
{
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2020-05-28T00:00:00",
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"date": "2020-04-29T00:00:00",
"db": "VULMON",
"id": "CVE-2017-18860"
},
{
"date": "2020-06-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"date": "2020-04-29T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202004-2386"
},
{
"date": "2020-04-29T14:15:14.013000",
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2020-05-28T00:00:00",
"db": "CNVD",
"id": "CNVD-2020-30574"
},
{
"date": "2020-05-05T00:00:00",
"db": "VULMON",
"id": "CVE-2017-18860"
},
{
"date": "2020-06-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-014985"
},
{
"date": "2020-05-14T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202004-2386"
},
{
"date": "2024-11-21T03:21:06.917000",
"db": "NVD",
"id": "CVE-2017-18860"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202004-2386"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural NETGEAR Injection vulnerabilities in devices",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-014985"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202004-2386"
}
],
"trust": 0.6
}
}