CVE-2021-33514

Published: May 21, 2021Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker via the vulnerable /sqfs/lib/libsal.so.0.0 library used by a CGI application, as demonstrated by setup.cgi?token=';$HTTP_USER_AGENT;' with an OS command in the User-Agent field. This affects GC108P before 1.0.7.3, GC108PP before 1.0.7.3, GS108Tv3 before 7.0.6.3, GS110TPPv1 before 7.0.6.3, GS110TPv3 before 7.0.6.3, GS110TUPv1 before 1.0.4.3, GS710TUPv1 before 1.0.4.3, GS716TP before 1.0.2.3, GS716TPP before 1.0.2.3, GS724TPPv1 before 2.0.4.3, GS724TPv2 before 2.0.4.3, GS728TPPv2 before 6.0.6.3, GS728TPv2 before 6.0.6.3, GS752TPPv1 before 6.0.6.3, GS752TPv2 before 6.0.6.3, MS510TXM before 1.0.2.3, and MS510TXUP before 1.0.2.3.

Affected (17)

Products: Netgear: Gc108p Firmware, Gc108pp Firmware, Gs108t Firmware, Gs110tpp Firmware, Gs110tp Firmware, Gs110tup Firmware, Gs710tup Firmware, Gs716tp Firmware, Gs716tpp Firmware, Gs724tpp Firmware, Gs724tp Firmware, Gs728tpp Firmware, Gs728tp Firmware, Gs752tpp Firmware, Gs752tp Firmware, Ms510txm Firmware, Ms510txup Firmware

17 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gc108p Firmware	Before 1.0.7.3

Running on/with	Platform Versions
Netgear Gc108p	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gc108pp Firmware	Before 1.0.7.3

Running on/with	Platform Versions
Netgear Gc108pp	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs108t Firmware	Before 7.0.6.3

Running on/with	Platform Versions
Netgear Gs108tv3	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs110tpp Firmware	Before 7.0.6.3

Running on/with	Platform Versions
Netgear Gs110tpp	Version v1

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs110tp Firmware	Before 7.0.6.3

Running on/with	Platform Versions
Netgear Gs110tp	Version v3

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs110tup Firmware	Before 1.0.4.3

Running on/with	Platform Versions
Netgear Gs110tup	Version v1

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs710tup Firmware	Before 1.0.4.3

Running on/with	Platform Versions
Netgear Gs710tup	Version v1

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs716tp Firmware	Before 1.0.2.3

Running on/with	Platform Versions
Netgear Gs716tp	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs716tpp Firmware	Before 1.0.2.3

Running on/with	Platform Versions
Netgear Gs716tpp	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs724tpp Firmware	Before 2.0.4.3

Running on/with	Platform Versions
Netgear Gs724tpp	Version v1

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs724tp Firmware	Before 2.0.4.3

Running on/with	Platform Versions
Netgear Gs724tp	Version v2

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs728tpp Firmware	Before 6.0.6.3

Running on/with	Platform Versions
Netgear Gs728tpp	Version v2

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs728tp Firmware	Before 6.0.6.3

Running on/with	Platform Versions
Netgear Gs728tp	Version v2

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs752tpp Firmware	Before 6.0.6.3

Running on/with	Platform Versions
Netgear Gs752tpp	Version v1

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Gs752tp Firmware	Before 6.0.6.3

Running on/with	Platform Versions
Netgear Gs752tp	Version v2

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ms510txm Firmware	Before 1.0.2.3

Running on/with	Platform Versions
Netgear Ms510txm	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ms510txup Firmware	Before 1.0.2.3

Running on/with	Platform Versions
Netgear Ms510txup	All versions

Related CWEs

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (4)

https://gynvael.coldwind.pl/?lang=en&id=733

Source: cve@mitre.org

ExploitThird Party Advisory

https://kb.netgear.com/000063641/Security-Advisory-for-Pre-Authentication-Command-Injection-Vulnerability-on-Some-Smart-Switches-PSV-2021-0071

Source: cve@mitre.org

Vendor Advisory

https://gynvael.coldwind.pl/?lang=en&id=733

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://kb.netgear.com/000063641/Security-Advisory-for-Pre-Authentication-Command-Injection-Vulnerability-on-Some-Smart-Switches-PSV-2021-0071

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.