cnvd - cnvd-2021-63380

CNVD-2021-63380

Vulnerability from cnvd - Published: 2021-08-19

Title

NETGEAR缓冲区溢出漏洞（CNVD-2021-63380）

Description

NETGEAR D6220等都是美国网件（NETGEAR）公司的产品。NETGEAR D6220是一款无线调制解调器。NETGEAR R6300是一款无线路由器。NETGEAR EX3700是一款无线网络信号扩展器。多款NETGEAR产品中存在缓冲区溢出漏洞。该漏洞源于网络系统或产品在内存上执行操作时，未正确验证数据边界，导致向关联的其他内存位置上执行了错误的读写操作。攻击者可利用该漏洞导致缓冲区溢出或堆溢出等。

Severity

中

Patch Name

NETGEAR缓冲区溢出漏洞（CNVD-2021-63380）的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://kb.netgear.com/000061192/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-Gateways-and-Extenders-PSV-2017-0791

Reference

https://nvd.nist.gov/vuln/detail/CVE-2019-20734

Impacted products

Name
['NETGEAR R6300v2 <1.0.4.18', 'NETGEAR R7900 <1.0.1.26', 'NETGEAR R8500 <1.0.2.106', 'NETGEAR R8300 <1.0.2.106', 'NETGEAR R6400 <1.0.1.24', 'NETGEAR R6400v2 <1.0.2.32', 'NETGEAR R6700 <1.0.1.22', 'NETGEAR R6900 <1.0.1.22', 'NETGEAR R7300DST <1.0.0.54', 'NETGEAR WNR3500Lv2 <1.2.0.46', 'NETGEAR EX3700 <1.0.0.70', 'NETGEAR EX3800 <1.0.0.70', 'NETGEAR EX6000 <1.0.0.30', 'NETGEAR EX6120 <1.0.0.40', 'NETGEAR EX6130 <1.0.0.22', 'NETGEAR EX6200 <1.0.3.88', 'NETGEAR EX7000 <1.0.0.66', 'NETGEAR EX6150v1 <1.0.0.42', 'NETGEAR WN2500RPv2 <1.0.1.54', 'NETGEAR R7000 <1.0.9.6', 'NETGEAR D6220 <1.0.0.40', 'NETGEAR D8500 <1.0.3.39', 'NETGEAR R6900P <1.0.0.56', 'NETGEAR R7000P <1.0.0.56', 'NETGEAR EX6100 <1.0.2.22', 'NETGEAR R7100LG <1.0.0.42', 'NETGEAR R6700v3 <1.0.2.32']

Name

['NETGEAR R6300v2 <1.0.4.18', 'NETGEAR R7900 <1.0.1.26', 'NETGEAR R8500 <1.0.2.106', 'NETGEAR R8300 <1.0.2.106', 'NETGEAR R6400 <1.0.1.24', 'NETGEAR R6400v2 <1.0.2.32', 'NETGEAR R6700 <1.0.1.22', 'NETGEAR R6900 <1.0.1.22', 'NETGEAR R7300DST <1.0.0.54', 'NETGEAR WNR3500Lv2 <1.2.0.46', 'NETGEAR EX3700 <1.0.0.70', 'NETGEAR EX3800 <1.0.0.70', 'NETGEAR EX6000 <1.0.0.30', 'NETGEAR EX6120 <1.0.0.40', 'NETGEAR EX6130 <1.0.0.22', 'NETGEAR EX6200 <1.0.3.88', 'NETGEAR EX7000 <1.0.0.66', 'NETGEAR EX6150v1 <1.0.0.42', 'NETGEAR WN2500RPv2 <1.0.1.54', 'NETGEAR R7000 <1.0.9.6', 'NETGEAR D6220 <1.0.0.40', 'NETGEAR D8500 <1.0.3.39', 'NETGEAR R6900P <1.0.0.56', 'NETGEAR R7000P <1.0.0.56', 'NETGEAR EX6100 <1.0.2.22', 'NETGEAR R7100LG <1.0.0.42', 'NETGEAR R6700v3 <1.0.2.32']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-20734"
    }
  },
  "description": "NETGEAR D6220\u7b49\u90fd\u662f\u7f8e\u56fd\u7f51\u4ef6\uff08NETGEAR\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002NETGEAR D6220\u662f\u4e00\u6b3e\u65e0\u7ebf\u8c03\u5236\u89e3\u8c03\u5668\u3002NETGEAR R6300\u662f\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\u3002NETGEAR EX3700\u662f\u4e00\u6b3e\u65e0\u7ebf\u7f51\u7edc\u4fe1\u53f7\u6269\u5c55\u5668\u3002\n\n\u591a\u6b3eNETGEAR\u4ea7\u54c1\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u5728\u5185\u5b58\u4e0a\u6267\u884c\u64cd\u4f5c\u65f6\uff0c\u672a\u6b63\u786e\u9a8c\u8bc1\u6570\u636e\u8fb9\u754c\uff0c\u5bfc\u81f4\u5411\u5173\u8054\u7684\u5176\u4ed6\u5185\u5b58\u4f4d\u7f6e\u4e0a\u6267\u884c\u4e86\u9519\u8bef\u7684\u8bfb\u5199\u64cd\u4f5c\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u7f13\u51b2\u533a\u6ea2\u51fa\u6216\u5806\u6ea2\u51fa\u7b49\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://kb.netgear.com/000061192/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-Gateways-and-Extenders-PSV-2017-0791",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-63380",
  "openTime": "2021-08-19",
  "patchDescription": "NETGEAR D6220\u7b49\u90fd\u662f\u7f8e\u56fd\u7f51\u4ef6\uff08NETGEAR\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002NETGEAR D6220\u662f\u4e00\u6b3e\u65e0\u7ebf\u8c03\u5236\u89e3\u8c03\u5668\u3002NETGEAR R6300\u662f\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\u3002NETGEAR EX3700\u662f\u4e00\u6b3e\u65e0\u7ebf\u7f51\u7edc\u4fe1\u53f7\u6269\u5c55\u5668\u3002\r\n\r\n\u591a\u6b3eNETGEAR\u4ea7\u54c1\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7f51\u7edc\u7cfb\u7edf\u6216\u4ea7\u54c1\u5728\u5185\u5b58\u4e0a\u6267\u884c\u64cd\u4f5c\u65f6\uff0c\u672a\u6b63\u786e\u9a8c\u8bc1\u6570\u636e\u8fb9\u754c\uff0c\u5bfc\u81f4\u5411\u5173\u8054\u7684\u5176\u4ed6\u5185\u5b58\u4f4d\u7f6e\u4e0a\u6267\u884c\u4e86\u9519\u8bef\u7684\u8bfb\u5199\u64cd\u4f5c\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u7f13\u51b2\u533a\u6ea2\u51fa\u6216\u5806\u6ea2\u51fa\u7b49\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "NETGEAR\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-63380\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "NETGEAR R6300v2 \u003c1.0.4.18",
      "NETGEAR R7900 \u003c1.0.1.26",
      "NETGEAR R8500 \u003c1.0.2.106",
      "NETGEAR R8300 \u003c1.0.2.106",
      "NETGEAR R6400 \u003c1.0.1.24",
      "NETGEAR R6400v2 \u003c1.0.2.32",
      "NETGEAR R6700 \u003c1.0.1.22",
      "NETGEAR R6900 \u003c1.0.1.22",
      "NETGEAR R7300DST \u003c1.0.0.54",
      "NETGEAR WNR3500Lv2 \u003c1.2.0.46",
      "NETGEAR EX3700 \u003c1.0.0.70",
      "NETGEAR EX3800 \u003c1.0.0.70",
      "NETGEAR EX6000 \u003c1.0.0.30",
      "NETGEAR EX6120 \u003c1.0.0.40",
      "NETGEAR EX6130 \u003c1.0.0.22",
      "NETGEAR EX6200 \u003c1.0.3.88",
      "NETGEAR EX7000 \u003c1.0.0.66",
      "NETGEAR EX6150v1 \u003c1.0.0.42",
      "NETGEAR WN2500RPv2 \u003c1.0.1.54",
      "NETGEAR R7000 \u003c1.0.9.6",
      "NETGEAR D6220 \u003c1.0.0.40",
      "NETGEAR D8500 \u003c1.0.3.39",
      "NETGEAR R6900P \u003c1.0.0.56",
      "NETGEAR R7000P \u003c1.0.0.56",
      "NETGEAR EX6100 \u003c1.0.2.22",
      "NETGEAR R7100LG \u003c1.0.0.42",
      "NETGEAR R6700v3 \u003c1.0.2.32"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-20734",
  "serverity": "\u4e2d",
  "submitTime": "2020-04-17",
  "title": "NETGEAR\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-63380\uff09"
}

CVE-2019-20734 (GCVE-0-2019-20734)

Vulnerability from cvelistv5 – Published: 2020-04-16 19:12 – Updated: 2024-08-05 02:53

Summary

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.40, D8500 before 1.0.3.39, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, R6300v2 before 1.0.4.18, R6400 before 1.0.1.24, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6700v3 before 1.0.2.32, R6900 before 1.0.1.22, R7000 before 1.0.9.6, R6900P before 1.0.0.56, R7000P before 1.0.0.56, R7100LG before 1.0.0.42, R7300DST before 1.0.0.54, R7900 before 1.0.1.26, R8300 before 1.0.2.106, R8500 before 1.0.2.106, WN2500RPv2 before 1.0.1.54, and WNR3500Lv2 before 1.2.0.46. NOTE: this may be a result of an incomplete fix for CVE-2017-18864.

Severity ?

8.2 (High)


                        
                          CVSS:3.0/AC:H/AV:A/A:L/C:H/I:H/PR:N/S:C/UI:N

CWE

Assigner

mitre

References

URL

Tags

https://kb.netgear.com/000061192/Security-Advisor…

x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T02:53:08.707Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kb.netgear.com/000061192/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-Gateways-and-Extenders-PSV-2017-0791"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.40, D8500 before 1.0.3.39, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, R6300v2 before 1.0.4.18, R6400 before 1.0.1.24, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6700v3 before 1.0.2.32, R6900 before 1.0.1.22, R7000 before 1.0.9.6, R6900P before 1.0.0.56, R7000P before 1.0.0.56, R7100LG before 1.0.0.42, R7300DST before 1.0.0.54, R7900 before 1.0.1.26, R8300 before 1.0.2.106, R8500 before 1.0.2.106, WN2500RPv2 before 1.0.1.54, and WNR3500Lv2 before 1.2.0.46. NOTE: this may be a result of an incomplete fix for CVE-2017-18864."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "HIGH",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AC:H/AV:A/A:L/C:H/I:H/PR:N/S:C/UI:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-05-05T22:24:25",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kb.netgear.com/000061192/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-Gateways-and-Extenders-PSV-2017-0791"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2019-20734",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.40, D8500 before 1.0.3.39, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30, EX6100 before 1.0.2.22, EX6120 before 1.0.0.40, EX6130 before 1.0.0.22, EX6150v1 before 1.0.0.42, EX6200 before 1.0.3.88, EX7000 before 1.0.0.66, R6300v2 before 1.0.4.18, R6400 before 1.0.1.24, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6700v3 before 1.0.2.32, R6900 before 1.0.1.22, R7000 before 1.0.9.6, R6900P before 1.0.0.56, R7000P before 1.0.0.56, R7100LG before 1.0.0.42, R7300DST before 1.0.0.54, R7900 before 1.0.1.26, R8300 before 1.0.2.106, R8500 before 1.0.2.106, WN2500RPv2 before 1.0.1.54, and WNR3500Lv2 before 1.2.0.46. NOTE: this may be a result of an incomplete fix for CVE-2017-18864."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "ADJACENT",
            "availabilityImpact": "LOW",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AC:H/AV:A/A:L/C:H/I:H/PR:N/S:C/UI:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://kb.netgear.com/000061192/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-Gateways-and-Extenders-PSV-2017-0791",
              "refsource": "CONFIRM",
              "url": "https://kb.netgear.com/000061192/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-Gateways-and-Extenders-PSV-2017-0791"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2019-20734",
    "datePublished": "2020-04-16T19:12:41",
    "dateReserved": "2020-04-15T00:00:00",
    "dateUpdated": "2024-08-05T02:53:08.707Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-63380

CVE-2019-20734 (GCVE-0-2019-20734)

Tags

Sightings

Nomenclature