Information disclosure in Netgear D6220

CVE-2017-18769

Certain NETGEAR devices are affected by an attacker's ability to read arbitrary files. This affects D6220 before 1.0.0.40, D6400 before 1.0.0.74, D7000 before 1.0.1.60, D7800 before 1.0.1.34, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.9…

Vulnerability class: Information Disclosure

EPSS: 0.003 (25.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.6 (Medium). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2017-18769?
CVE-2017-18769 is a medium-severity vulnerability in Netgear D6220, classified under Information Disclosure. CVSS score: 4.6/10. Published 2020-04-22.
How severe is CVE-2017-18769?
Medium severity. CVSS v3 base score is 4.6 out of 10.