CVE-2021-38513
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD
Description
Certain NETGEAR devices are affected by authentication bypass. This affects RBK852 before 3.2.10.11, RBR850 before 3.2.10.11, RBS850 before 3.2.10.11, CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, MK62 before 1.0.6.110, MR60 before 1.0.6.110, MS60 before 1.0.6.110, RBK752 before 3.2.10.10, RBR750 before 3.2.10.10, and RBS750 before 3.2.10.10.
Affected (11)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.10.11 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbk852 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.10.11 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbr850 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.10.11 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbs850 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.5.0.10 |
| Running on/with | Platform Versions |
|---|---|
Netgear Cbr40 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.48 |
| Running on/with | Platform Versions |
|---|---|
Netgear Eax20 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.6.110 |
| Running on/with | Platform Versions |
|---|---|
Netgear Mk62 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.6.110 |
| Running on/with | Platform Versions |
|---|---|
Netgear Mr60 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.6.110 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ms60 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.10.10 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbk752 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.10.10 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbr750 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.10.10 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbs750 | All versions |
References (2)
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.