CVE-2021-29066

Published: Mar 23, 2021Modified: Nov 21, 2024

9.6

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 6.0

Source: NVD

Description

Certain NETGEAR devices are affected by authentication bypass. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.

Affected (5)

Products: Netgear: Rbk852 Firmware, Rbk853 Firmware, Rbk854 Firmware, Rbr850 Firmware, Rbs850 Firmware

5 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbk852 Firmware	Before 3.2.17.12

Running on/with	Platform Versions
Netgear Rbk852	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbk853 Firmware	Before 3.2.17.12

Running on/with	Platform Versions
Netgear Rbk853	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbk854 Firmware	Before 3.2.17.12

Running on/with	Platform Versions
Netgear Rbk854	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbr850 Firmware	Before 3.2.17.12

Running on/with	Platform Versions
Netgear Rbr850	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbs850 Firmware	Before 3.2.17.12

Running on/with	Platform Versions
Netgear Rbs850	All versions

References (2)

https://kb.netgear.com/000063014/Security-Advisory-for-Authentication-Bypass-on-Some-WiFi-Systems-PSV-2020-0484

Source: cve@mitre.org

Vendor Advisory

https://kb.netgear.com/000063014/Security-Advisory-for-Authentication-Bypass-on-Some-WiFi-Systems-PSV-2020-0484

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.