CVE-2021-45665
4.8
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Exploitability: 1.7 / Impact: 2.7
Source: NVD
Description
Certain NETGEAR devices are affected by stored XSS. This affects EAX20 before 1.0.0.36, EAX80 before 1.0.1.62, EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, RBW30 before 2.6.1.4, RBK752 before 3.2.16.6, RBR750 before 3.2.16.6, RBS750 before 3.2.16.6, RBK852 before 3.2.16.6, RBR850 before 3.2.16.6, RBS850 before 3.2.16.6, and RBS40V before 2.6.1.4.
Affected (15)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.36 |
| Running on/with | Platform Versions |
|---|---|
Netgear Eax20 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.1.62 |
| Running on/with | Platform Versions |
|---|---|
Netgear Eax80 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.90 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ex3700 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.90 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ex3800 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.64 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ex6120 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.44 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ex6130 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.72 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ex7500 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.6.1.4 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbw30 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.16.6 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbk752 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.16.6 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbr750 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.16.6 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbs750 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.16.6 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbk852 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.16.6 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbr850 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.2.16.6 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbs850 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.6.1.4 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rbs40v | All versions |
References (2)
Source: cve@mitre.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.