CVE-2018-21156
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-21156
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D6220 before 1.0.0.38, D6400 before 1.0.0.74, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGN2200Bv4 before 1.0.0.102, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150 before 1.0.0.38, EX6200 before 1.0.3.86, EX7000 before 1.0.0.64, R6250 before 1.0.4.20, R6300v2 before 1.0.4.22, R6400 before 1.0.1.32, R6400v2 before 1.0.2.52, R6700 before 1.0.1.44, R6900 before 1.0.1.44, R6900P before 1.3.0.18, R7000 before 1.0.9.28, R7000P before 1.3.0.18, R7300DST before 1.0.0.62, R7900 before 1.0.2.10, R7900P before 1.3.0.10, R8000 before 1.0.4.12, R8000P before 1.3.0.10, R8300 before 1.0.2.116, R8500 before 1.0.2.116, WN2500RPv2 before 1.0.1.52, WNDR3400v3 before 1.0.1.18, and WNR3500Lv2 before 1.2.0.46.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款NETGEAR产品缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
NETGEAR WNR3500L等都是美国网件(NETGEAR)公司的产品。WNR3500L是一款无线路由器。NETGEAR D6220是一款无线调制解调器。WN2500RP是一款无线网络信号扩展器。 多款NETGEAR产品中存在缓冲区错误漏洞。该漏洞源于网络系统或产品在内存上执行操作时,未正确验证数据边界,导致向关联的其他内存位置上执行了错误的读写操作。攻击者可利用该漏洞导致缓冲区溢出或堆溢出等。以下产品及版本受到影响:NETGEAR D6220 1.0.0.38之前版本;D6400 1.0.0.74之
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2018-21156
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-21156
请登录查看更多情报信息。
Same Patch Batch · n/a · 2020-04-27 · 65 CVEs total
| CVE-2018-21154 | 多款NETGEAR产品操作系统命令注入漏洞 | |
| CVE-2018-21176 | 多款NETGEAR产品缓冲区错误漏洞 | |
| CVE-2018-21179 | 多款NETGEAR产品缓冲区错误漏洞 | |
| CVE-2018-21178 | 多款NETGEAR产品缓冲区错误漏洞 | |
| CVE-2018-21177 | 多款NETGEAR产品缓冲区错误漏洞 | |
| CVE-2018-21167 | 多款NETGEAR产品跨站脚本漏洞 | |
| CVE-2018-21159 | NETGEAR ReadyNAS OS 安全漏洞 | |
| CVE-2018-21158 | NETGEAR R7800 安全漏洞 | |
| CVE-2018-21157 | 多款NETGEAR产品操作系统命令注入漏洞 | |
| CVE-2018-21155 | 多款NETGEAR产品跨站脚本漏洞 | |
| CVE-2018-21168 | 多款NETGEAR产品信息泄露漏洞 | |
| CVE-2018-21153 | 多款NETGEAR产品缓冲区错误漏洞 | |
| CVE-2018-21152 | 多款NETGEAR产品操作系统命令注入漏洞 | |
| CVE-2018-21149 | 多款NETGEAR产品缓冲区错误漏洞 | |
| CVE-2018-21100 | NETGEAR R7800 操作系统命令注入漏洞 | |
| CVE-2018-21099 | NETGEAR R7800 操作系统命令注入漏洞 | |
| CVE-2018-21098 | NETGEAR R7800 操作系统命令注入漏洞 | |
| CVE-2020-11941 | Opmantek Open-AudIT 操作系统命令注入漏洞 | |
| CVE-2019-15234 | SHAREit 资源管理错误漏洞 | |
| CVE-2019-14941 | SHAREit 资源管理错误漏洞 |
Showing top 20 of 65 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2018-21156
No comments yet