← Back

CVE-2021-45669

nvd nist
Published: Dec 26, 2021Modified: Nov 21, 2024

JSON object

Loading...
4.8
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Exploitability: 1.7 / Impact: 2.7
Source: NVD

Description

Certain NETGEAR devices are affected by stored XSS. This affects RAX200 before 1.0.3.106, MR60 before 1.0.6.110, RAX20 before 1.0.2.82, RAX45 before 1.0.2.72, RAX80 before 1.0.3.106, MS60 before 1.0.6.110, RAX15 before 1.0.2.82, RAX50 before 1.0.2.72, RAX75 before 1.0.3.106, RBR750 before 3.2.16.6, RBR850 before 3.2.16.6, RBS750 before 3.2.16.6, RBS850 before 3.2.16.6, RBK752 before 3.2.16.6, and RBK852 before 3.2.16.6.

Affected (15)

Netgear
15 products
Rax200 Firmware
Mr60 Firmware
Rax20 Firmware
Rax45 Firmware
Rax80 Firmware
Ms60 Firmware
Rax15 Firmware
Rax50 Firmware
Rax75 Firmware
Rbr750 Firmware
Rbr850 Firmware
Rbs750 Firmware
Rbs850 Firmware
Rbk752 Firmware
Rbk852 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax200 Firmware
Before 1.0.3.106
Running on/withPlatform Versions
Netgear
Rax200
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mr60 Firmware
Before 1.0.6.110
Running on/withPlatform Versions
Netgear
Mr60
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax20 Firmware
Before 1.0.2.82
Running on/withPlatform Versions
Netgear
Rax20
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax45 Firmware
Before 1.0.2.72
Running on/withPlatform Versions
Netgear
Rax45
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax80 Firmware
Before 1.0.3.106
Running on/withPlatform Versions
Netgear
Rax80
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ms60 Firmware
Before 1.0.6.110
Running on/withPlatform Versions
Netgear
Ms60
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax15 Firmware
Before 1.0.2.82
Running on/withPlatform Versions
Netgear
Rax15
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax50 Firmware
Before 1.0.2.72
Running on/withPlatform Versions
Netgear
Rax50
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax75 Firmware
Before 1.0.3.106
Running on/withPlatform Versions
Netgear
Rax75
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbr750 Firmware
Before 3.2.16.6
Running on/withPlatform Versions
Netgear
Rbr750
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbr850 Firmware
Before 3.2.16.6
Running on/withPlatform Versions
Netgear
Rbr850
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbs750 Firmware
Before 3.2.16.6
Running on/withPlatform Versions
Netgear
Rbs750
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbs850 Firmware
Before 3.2.16.6
Running on/withPlatform Versions
Netgear
Rbs850
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbk752 Firmware
Before 3.2.16.6
Running on/withPlatform Versions
Netgear
Rbk752
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbk852 Firmware
Before 3.2.16.6
Running on/withPlatform Versions
Netgear
Rbk852
All versions

Related CWEs

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

References (2)

Source: cve@mitre.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.