CVE-2017-18823

HIGH Year: 2017
CVSS v3 Score
7.7
High
CVSS v2 Score
2.1
Low
Weakness Type
NVD-CWE-Other
View all →

Vulnerability Description

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects M4300-28G before 12.0.2.15, M4300-52G before 12.0.2.15, M4300-28G-POE+ before 12.0.2.15, M4300-52G-POE+ before 12.0.2.15, M4300-8X8F before 12.0.2.15, M4300-12X12F before 12.0.2.15, M4300-24X24F before 12.0.2.15, M4300-24X before 12.0.2.15, M4300-48X before 12.0.2.15, and M4200 before 12.0.2.15.

Related Vulnerabilities

CVE-2016-0362

HIGH
CVSS:7.7(High)

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger net...

NVD-CWE-Other2016

CVE-2016-1996

HIGH
CVSS:7.7(High)

HPE System Management Homepage before 7.5.4 allows local users to obtain sensitive information or modify data via unspecified vectors.

NVD-CWE-Other2016

CVE-2016-3440

HIGH
CVSS:7.7(High)

Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.

NVD-CWE-Other2016

CVE-2016-3481

HIGH
CVSS:7.7(High)

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote authenticated users to affect availability via vectors related to Web.

NVD-CWE-Other2016

CVE-2016-3503

HIGH
CVSS:7.7(High)

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install.

NVD-CWE-Other2016

CVE-2016-3511

HIGH
CVSS:7.7(High)

Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Deployment.

NVD-CWE-Other2016