CVE-2021-45642

Published: Dec 26, 2021Modified: Nov 21, 2024

7.2

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: NVD

Description

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D7800 before 1.0.1.64, EX6250 before 1.0.0.134, EX7700 before 1.0.0.222, LBR20 before 2.6.3.50, RBS50Y before 2.7.3.22, R8900 before 1.0.5.26, R9000 before 1.0.5.26, XR450 before 2.3.2.66, XR500 before 2.3.2.66, XR700 before 1.0.1.36, EX7320 before 1.0.0.134, RAX120 before 1.2.2.24, EX7300v2 before 1.0.0.134, RAX120v2 before 1.2.2.24, EX6410 before 1.0.0.134, RBR10 before 2.7.3.22, RBR20 before 2.7.3.22, RBR40 before 2.7.3.22, RBR50 before 2.7.3.22, EX6420 before 1.0.0.134, RBS10 before 2.7.3.22, RBS20 before 2.7.3.22, RBS40 before 2.7.3.22, RBS50 before 2.7.3.22, EX6400v2 before 1.0.0.134, RBK12 before 2.7.3.22, RBK20 before 2.7.3.22, RBK40 before 2.7.3.22, and RBK50 before 2.7.3.22.

Affected (29)

Products: Netgear: D7800 Firmware, Ex6250 Firmware, Ex7700 Firmware, Lbr20 Firmware, Rbs50y Firmware, Rbs50 Firmware, Rbs20 Firmware, Rbs10 Firmware, Rbs40 Firmware, R8900 Firmware, R9000 Firmware, Xr450 Firmware, Xr500 Firmware, Xr700 Firmware, Ex7320 Firmware, Rax120 Firmware, Ex7300v2 Firmware, Rax120v2 Firmware, Ex6410 Firmware, Ex6420 Firmware, Ex6400v2 Firmware, Rbr10 Firmware, Rbr20 Firmware, Rbr40 Firmware, Rbr50 Firmware, Rbk12 Firmware, Rbk20 Firmware, Rbk40 Firmware, Rbk50 Firmware

29 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear D7800 Firmware	Before 1.0.1.64

Running on/with	Platform Versions
Netgear D7800	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ex6250 Firmware	Before 1.0.0.134

Running on/with	Platform Versions
Netgear Ex6250	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ex7700 Firmware	Before 1.0.0.222

Running on/with	Platform Versions
Netgear Ex7700	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Lbr20 Firmware	Before 2.6.3.50

Running on/with	Platform Versions
Netgear Lbr20	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbs50y Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbs50y	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbs50 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbs50y Firmware	Version 2.7.3.22

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbs20 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbs20	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbs10 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbs10	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbs40 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbs40	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear R8900 Firmware	Before 1.0.5.26

Running on/with	Platform Versions
Netgear R8900	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear R9000 Firmware	Before 1.0.5.26

Running on/with	Platform Versions
Netgear R9000	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Xr450 Firmware	Before 2.3.2.66

Running on/with	Platform Versions
Netgear Xr450	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Xr500 Firmware	Before 2.3.2.66

Running on/with	Platform Versions
Netgear Xr500	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Xr700 Firmware	Before 1.0.1.36

Running on/with	Platform Versions
Netgear Xr700	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ex7320 Firmware	Before 1.0.0.134

Running on/with	Platform Versions
Netgear Ex7320	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rax120 Firmware	Before 1.2.2.24

Running on/with	Platform Versions
Netgear Rax120	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ex7300v2 Firmware	Before 1.0.0.134

Running on/with	Platform Versions
Netgear Ex7300v2	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rax120v2 Firmware	Before 1.2.2.24

Running on/with	Platform Versions
Netgear Rax120v2	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ex6410 Firmware	Before 1.0.0.134

Running on/with	Platform Versions
Netgear Ex6410	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ex6420 Firmware	Before 1.0.0.134

Running on/with	Platform Versions
Netgear Ex6420	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Ex6400v2 Firmware	Before 1.0.0.134

Running on/with	Platform Versions
Netgear Ex6400v2	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbr10 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbr10	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbr20 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbr20	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbr40 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbr40	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbr50 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbr50	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbk12 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbk12	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbk20 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbk20	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbk40 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbk40	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netgear Rbk50 Firmware	Before 2.7.3.22

Running on/with	Platform Versions
Netgear Rbk50	All versions

References (2)

https://kb.netgear.com/000064491/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-Extenders-and-WiFi-Systems-PSV-2020-0427

Source: cve@mitre.org

PatchVendor Advisory

https://kb.netgear.com/000064491/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-Extenders-and-WiFi-Systems-PSV-2020-0427

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.