cnvd - cnvd-2021-59154

cnvd-2021-59154

Vulnerability from cnvd

Title: 多款NETGEAR产品缓冲区溢出漏洞（CNVD-2021-59154）

Description:

NETGEAR WNR3500L等都是美国网件（NETGEAR）公司的产品。WNR3500L是一款无线路由器。NETGEAR D6220是一款无线调制解调器。WN2500RP是一款无线网络信号扩展器。

多款NETGEAR产品中存在缓冲区溢出漏洞。该漏洞源于网络系统或产品在内存上执行操作时，未正确验证数据边界，导致向关联的其他内存位置上执行了错误的读写操作。攻击者可利用该漏洞导致缓冲区溢出或堆溢出等。

Severity: 中

Patch Name: 多款NETGEAR产品缓冲区溢出漏洞（CNVD-2021-59154）的补丁

Patch Description:

NETGEAR WNR3500L等都是美国网件（NETGEAR）公司的产品。WNR3500L是一款无线路由器。NETGEAR D6220是一款无线调制解调器。WN2500RP是一款无线网络信号扩展器。

多款NETGEAR产品中存在缓冲区溢出漏洞。该漏洞源于网络系统或产品在内存上执行操作时，未正确验证数据边界，导致向关联的其他内存位置上执行了错误的读写操作。攻击者可利用该漏洞导致缓冲区溢出或堆溢出等。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://kb.netgear.com/000059474/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Gateways-Routers-and-Extenders-PSV-2017-2460

Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-21156

Impacted products

Name
['NETGEAR WNR3500Lv2 <1.2.0.46', 'NETGEAR EX3700 <1.0.0.70', 'NETGEAR EX3800 <1.0.0.70', 'NETGEAR EX6000 <1.0.0.30', 'NETGEAR EX6120 <1.0.0.40', 'NETGEAR EX6130 <1.0.0.22', 'NETGEAR R6400v2 <1.0.2.52', 'NETGEAR R7000 <1.0.9.28', 'NETGEAR R7900 <1.0.2.10', 'NETGEAR R8000P <1.3.0.10', 'NETGEAR R7900P <1.3.0.10', 'NETGEAR R6700 <1.0.1.44', 'NETGEAR R6900 <1.0.1.44', 'NETGEAR R8000 <1.0.4.12', 'NETGEAR R6400 <1.0.1.32', 'NETGEAR D6400 <1.0.0.74', 'NETGEAR D8500 <1.0.3.39', 'NETGEAR DGN2200Bv4 <1.0.0.102', 'NETGEAR DGN2200v4 <1.0.0.102', 'NETGEAR EX6100 <1.0.2.22', 'NETGEAR EX6150 <1.0.0.38', 'NETGEAR EX6200 <1.0.3.86', 'NETGEAR EX7000 <1.0.0.64', 'NETGEAR R6300v2 <1.0.4.22', 'NETGEAR R6900P <1.3.0.18', 'NETGEAR R7000P <1.3.0.18', 'NETGEAR R7300DST <1.0.0.62', 'NETGEAR WN2500RPv2 <1.0.1.52', 'NETGEAR WNDR3400v3 <1.0.1.18', 'NETGEAR D6220 <1.0.0.38', 'NETGEAR D7000v2 <1.0.0.74', 'NETGEAR R6250 <1.0.4.20', 'NETGEAR R8300 <1.0.2.116', 'NETGEAR R8500 <1.0.2.116']

Name

['NETGEAR WNR3500Lv2 <1.2.0.46', 'NETGEAR EX3700 <1.0.0.70', 'NETGEAR EX3800 <1.0.0.70', 'NETGEAR EX6000 <1.0.0.30', 'NETGEAR EX6120 <1.0.0.40', 'NETGEAR EX6130 <1.0.0.22', 'NETGEAR R6400v2 <1.0.2.52', 'NETGEAR R7000 <1.0.9.28', 'NETGEAR R7900 <1.0.2.10', 'NETGEAR R8000P <1.3.0.10', 'NETGEAR R7900P <1.3.0.10', 'NETGEAR R6700 <1.0.1.44', 'NETGEAR R6900 <1.0.1.44', 'NETGEAR R8000 <1.0.4.12', 'NETGEAR R6400 <1.0.1.32', 'NETGEAR D6400 <1.0.0.74', 'NETGEAR D8500 <1.0.3.39', 'NETGEAR DGN2200Bv4 <1.0.0.102', 'NETGEAR DGN2200v4 <1.0.0.102', 'NETGEAR EX6100 <1.0.2.22', 'NETGEAR EX6150 <1.0.0.38', 'NETGEAR EX6200 <1.0.3.86', 'NETGEAR EX7000 <1.0.0.64', 'NETGEAR R6300v2 <1.0.4.22', 'NETGEAR R6900P <1.3.0.18', 'NETGEAR R7000P <1.3.0.18', 'NETGEAR R7300DST <1.0.0.62', 'NETGEAR WN2500RPv2 <1.0.1.52', 'NETGEAR WNDR3400v3 <1.0.1.18', 'NETGEAR D6220 <1.0.0.38', 'NETGEAR D7000v2 <1.0.0.74', 'NETGEAR R6250 <1.0.4.20', 'NETGEAR R8300 <1.0.2.116', 'NETGEAR R8500 <1.0.2.116']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-21156"
    }
  },
  "description": "NETGEAR WNR3500L\u7b49\u90fd\u662f\u7f8e\u56fd\u7f51\u4ef6\uff08NETGEAR\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002WNR3500L\u662f\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\u3002NETGEAR D6220\u662f\u4e00\u6b3e\u65e0\u7ebf\u8c03\u5236\u89e3\u8c03\u5668\u3002WN2500RP\u662f\u4e00\u6b3e\u65e0\u7ebf\u7f51\u7edc\u4fe1\u53f7\u6269\u5c55\u5668\u3002\n\n\u591a\u6b3eNETGEAR\u4ea7\u54c1\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u5728\u5185\u5b58\u4e0a\u6267\u884c\u64cd\u4f5c\u65f6\uff0c\u672a\u6b63\u786e\u9a8c\u8bc1\u6570\u636e\u8fb9\u754c\uff0c\u5bfc\u81f4\u5411\u5173\u8054\u7684\u5176\u4ed6\u5185\u5b58\u4f4d\u7f6e\u4e0a\u6267\u884c\u4e86\u9519\u8bef\u7684\u8bfb\u5199\u64cd\u4f5c\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u7f13\u51b2\u533a\u6ea2\u51fa\u6216\u5806\u6ea2\u51fa\u7b49\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://kb.netgear.com/000059474/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Gateways-Routers-and-Extenders-PSV-2017-2460",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-59154",
  "openTime": "2021-08-08",
  "patchDescription": "NETGEAR WNR3500L\u7b49\u90fd\u662f\u7f8e\u56fd\u7f51\u4ef6\uff08NETGEAR\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002WNR3500L\u662f\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\u3002NETGEAR D6220\u662f\u4e00\u6b3e\u65e0\u7ebf\u8c03\u5236\u89e3\u8c03\u5668\u3002WN2500RP\u662f\u4e00\u6b3e\u65e0\u7ebf\u7f51\u7edc\u4fe1\u53f7\u6269\u5c55\u5668\u3002\r\n\r\n\u591a\u6b3eNETGEAR\u4ea7\u54c1\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u5728\u5185\u5b58\u4e0a\u6267\u884c\u64cd\u4f5c\u65f6\uff0c\u672a\u6b63\u786e\u9a8c\u8bc1\u6570\u636e\u8fb9\u754c\uff0c\u5bfc\u81f4\u5411\u5173\u8054\u7684\u5176\u4ed6\u5185\u5b58\u4f4d\u7f6e\u4e0a\u6267\u884c\u4e86\u9519\u8bef\u7684\u8bfb\u5199\u64cd\u4f5c\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u7f13\u51b2\u533a\u6ea2\u51fa\u6216\u5806\u6ea2\u51fa\u7b49\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eNETGEAR\u4ea7\u54c1\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-59154\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "NETGEAR WNR3500Lv2 \u003c1.2.0.46",
      "NETGEAR EX3700 \u003c1.0.0.70",
      "NETGEAR EX3800 \u003c1.0.0.70",
      "NETGEAR EX6000 \u003c1.0.0.30",
      "NETGEAR EX6120 \u003c1.0.0.40",
      "NETGEAR EX6130 \u003c1.0.0.22",
      "NETGEAR R6400v2 \u003c1.0.2.52",
      "NETGEAR R7000 \u003c1.0.9.28",
      "NETGEAR R7900 \u003c1.0.2.10",
      "NETGEAR R8000P \u003c1.3.0.10",
      "NETGEAR R7900P \u003c1.3.0.10",
      "NETGEAR R6700 \u003c1.0.1.44",
      "NETGEAR R6900 \u003c1.0.1.44",
      "NETGEAR R8000 \u003c1.0.4.12",
      "NETGEAR R6400 \u003c1.0.1.32",
      "NETGEAR D6400 \u003c1.0.0.74",
      "NETGEAR D8500 \u003c1.0.3.39",
      "NETGEAR DGN2200Bv4 \u003c1.0.0.102",
      "NETGEAR DGN2200v4 \u003c1.0.0.102",
      "NETGEAR EX6100 \u003c1.0.2.22",
      "NETGEAR EX6150 \u003c1.0.0.38",
      "NETGEAR EX6200 \u003c1.0.3.86",
      "NETGEAR EX7000 \u003c1.0.0.64",
      "NETGEAR R6300v2 \u003c1.0.4.22",
      "NETGEAR R6900P \u003c1.3.0.18",
      "NETGEAR R7000P \u003c1.3.0.18",
      "NETGEAR R7300DST \u003c1.0.0.62",
      "NETGEAR WN2500RPv2 \u003c1.0.1.52",
      "NETGEAR WNDR3400v3 \u003c1.0.1.18",
      "NETGEAR D6220 \u003c1.0.0.38",
      "NETGEAR D7000v2 \u003c1.0.0.74",
      "NETGEAR R6250 \u003c1.0.4.20",
      "NETGEAR R8300 \u003c1.0.2.116",
      "NETGEAR R8500 \u003c1.0.2.116"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-21156",
  "serverity": "\u4e2d",
  "submitTime": "2020-04-28",
  "title": "\u591a\u6b3eNETGEAR\u4ea7\u54c1\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-59154\uff09"
}

CVE-2018-21156 (GCVE-0-2018-21156)

Vulnerability from cvelistv5

Published

2020-04-27 17:14

Modified

2024-08-05 12:26

Severity ?

6.8 (Medium) - CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE

Summary

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.38, D6400 before 1.0.0.74, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGN2200Bv4 before 1.0.0.102, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150 before 1.0.0.38, EX6200 before 1.0.3.86, EX7000 before 1.0.0.64, R6250 before 1.0.4.20, R6300v2 before 1.0.4.22, R6400 before 1.0.1.32, R6400v2 before 1.0.2.52, R6700 before 1.0.1.44, R6900 before 1.0.1.44, R6900P before 1.3.0.18, R7000 before 1.0.9.28, R7000P before 1.3.0.18, R7300DST before 1.0.0.62, R7900 before 1.0.2.10, R7900P before 1.3.0.10, R8000 before 1.0.4.12, R8000P before 1.3.0.10, R8300 before 1.0.2.116, R8500 before 1.0.2.116, WN2500RPv2 before 1.0.1.52, WNDR3400v3 before 1.0.1.18, and WNR3500Lv2 before 1.2.0.46.

References

▼	URL	Tags
	https://kb.netgear.com/000059474/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Gateways-Routers-and-Extenders-PSV-2017-2460	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T12:26:38.299Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kb.netgear.com/000059474/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Gateways-Routers-and-Extenders-PSV-2017-2460"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.38, D6400 before 1.0.0.74, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGN2200Bv4 before 1.0.0.102, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150 before 1.0.0.38, EX6200 before 1.0.3.86, EX7000 before 1.0.0.64, R6250 before 1.0.4.20, R6300v2 before 1.0.4.22, R6400 before 1.0.1.32, R6400v2 before 1.0.2.52, R6700 before 1.0.1.44, R6900 before 1.0.1.44, R6900P before 1.3.0.18, R7000 before 1.0.9.28, R7000P before 1.3.0.18, R7300DST before 1.0.0.62, R7900 before 1.0.2.10, R7900P before 1.3.0.10, R8000 before 1.0.4.12, R8000P before 1.3.0.10, R8300 before 1.0.2.116, R8500 before 1.0.2.116, WN2500RPv2 before 1.0.1.52, WNDR3400v3 before 1.0.1.18, and WNR3500Lv2 before 1.2.0.46."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AC:L/AV:A/A:H/C:H/I:H/PR:H/S:U/UI:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-27T17:14:33",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kb.netgear.com/000059474/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Gateways-Routers-and-Extenders-PSV-2017-2460"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-21156",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.38, D6400 before 1.0.0.74, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGN2200Bv4 before 1.0.0.102, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150 before 1.0.0.38, EX6200 before 1.0.3.86, EX7000 before 1.0.0.64, R6250 before 1.0.4.20, R6300v2 before 1.0.4.22, R6400 before 1.0.1.32, R6400v2 before 1.0.2.52, R6700 before 1.0.1.44, R6900 before 1.0.1.44, R6900P before 1.3.0.18, R7000 before 1.0.9.28, R7000P before 1.3.0.18, R7300DST before 1.0.0.62, R7900 before 1.0.2.10, R7900P before 1.3.0.10, R8000 before 1.0.4.12, R8000P before 1.3.0.10, R8300 before 1.0.2.116, R8500 before 1.0.2.116, WN2500RPv2 before 1.0.1.52, WNDR3400v3 before 1.0.1.18, and WNR3500Lv2 before 1.2.0.46."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT",
            "availabilityImpact": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AC:L/AV:A/A:H/C:H/I:H/PR:H/S:U/UI:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://kb.netgear.com/000059474/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Gateways-Routers-and-Extenders-PSV-2017-2460",
              "refsource": "CONFIRM",
              "url": "https://kb.netgear.com/000059474/Security-Advisory-for-Post-Authentication-Buffer-Overflow-on-Some-Gateways-Routers-and-Extenders-PSV-2017-2460"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-21156",
    "datePublished": "2020-04-27T17:14:33",
    "dateReserved": "2020-04-20T00:00:00",
    "dateUpdated": "2024-08-05T12:26:38.299Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted