Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-45610

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.66, D6400 before 1.0.0.100, D7000v2 before 1.0.0.66, D8500 before 1.0.3.58, DC112A before 1.0.0.52, DGN2200v4 before 1.0.0.118, EAX80 before 1.0.1.64, R6250 before 1.0.4.48, R7000 before 1.0.11.110, R7100LG before 1.0.0.72, R7900 before 1.0.4.30, R7960P before 1.4.1.64, R8000 before 1.0.4.62, RAX200 before 1.0.3.106, RS400 before 1.5.1.80, XR300 before 1.0.3.68, R6400v2 before 1.0.4.106, R7000P before 1.3.2.132, R8000P before 1.4.1.64, RAX20 before 1.0.2.82, RAX45 before 1.0.2.82, RAX80 before 1.0.3.106, R6700v3 before 1.0.4.106, R6900P before 1.3.2.132, R7900P before 1.4.1.64, RAX15 before 1.0.2.82, RAX50 before 1.0.2.82, and RAX75 before 1.0.3.106.

Published

2021-12-26T01:15:18.177

Last Modified

2024-11-21T06:32:39.750

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.6 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

10.0

Weaknesses
  • Type: Primary
    CWE-120
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System netgear d6220_firmware < 1.0.0.66 Yes
Hardware netgear d6220 - No
Operating System netgear d6400_firmware < 1.0.0.100 Yes
Hardware netgear d6400 - No
Operating System netgear d7000v2_firmware < 1.0.0.66 Yes
Hardware netgear d7000v2 - No
Operating System netgear d8500_firmware < 1.0.3.58 Yes
Hardware netgear d8500 - No
Operating System netgear dc112a_firmware < 1.0.0.52 Yes
Hardware netgear dc112a - No
Operating System netgear dgn2200v4_firmware < 1.0.0.118 Yes
Hardware netgear dgn2200v4 - No
Operating System netgear eax80_firmware < 1.0.1.64 Yes
Hardware netgear eax80 - No
Operating System netgear r6250_firmware < 1.0.4.48 Yes
Hardware netgear r6250 - No
Operating System netgear r7000_firmware < 1.0.11.110 Yes
Hardware netgear r7000 - No
Operating System netgear r7000p_firmware < 1.3.2.132 Yes
Hardware netgear r7000p - No
Operating System netgear r8000_firmware < 1.0.4.62 Yes
Hardware netgear r8000 - No
Operating System netgear r8000p_firmware < 1.4.1.64 Yes
Hardware netgear r8000p - No
Operating System netgear r7100lg_firmware < 1.0.0.72 Yes
Hardware netgear r7100lg - No
Operating System netgear r7900_firmware < 1.0.4.30 Yes
Hardware netgear r7900 - No
Operating System netgear r7900p_firmware < 1.4.1.64 Yes
Hardware netgear r7900p - No
Operating System netgear r7960p_firmware < 1.4.1.64 Yes
Hardware netgear r7960p - No
Operating System netgear r6900p_firmware < 1.3.2.132 Yes
Hardware netgear r6900p - No
Operating System netgear r6400v2_firmware < 1.0.4.106 Yes
Hardware netgear r6400v2 - No
Operating System netgear r6700v3_firmware < 1.0.4.106 Yes
Hardware netgear r6700v3 - No
Operating System netgear xr300_firmware < 1.0.3.68 Yes
Hardware netgear xr300 - No
Operating System netgear rs400_firmware < 1.5.1.80 Yes
Hardware netgear rs400 - No
Operating System netgear rax200_firmware < 1.0.3.106 Yes
Hardware netgear rax200 - No
Operating System netgear rax20_firmware < 1.0.2.82 Yes
Hardware netgear rax20 - No
Operating System netgear rax45_firmware < 1.0.2.82 Yes
Hardware netgear rax45 - No
Operating System netgear rax80_firmware < 1.0.3.106 Yes
Hardware netgear rax80 - No
Operating System netgear rax15_firmware < 1.0.2.82 Yes
Hardware netgear rax15 - No
Operating System netgear rax50_firmware < 1.0.2.82 Yes
Hardware netgear rax50 - No
Operating System netgear rax75_firmware < 1.0.3.106 Yes
Hardware netgear rax75 - No
References