Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-45645

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects RBS50Y before 2.7.0.122, SRK60 before 2.7.0.122, SRR60 before 2.7.0.122, SRS60 before 2.7.0.122, SXK30 before 3.2.33.108, SXR30 before 3.2.33.108, SXS30 before 3.2.33.108, and SRC60 before 2.7.0.122.

Published

2021-12-26T01:15:19.877

Last Modified

2024-11-21T06:32:46.173

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.2 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

6.4

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System netgear rbs50y_firmware < 2.7.0.122 Yes
Hardware netgear rbs50y - No
Operating System netgear srk60_firmware < 2.7.0.122 Yes
Hardware netgear srk60 - No
Operating System netgear srr60_firmware < 2.7.0.122 Yes
Hardware netgear srr60 - No
Operating System netgear srs60_firmware < 2.7.0.122 Yes
Hardware netgear srs60 - No
Operating System netgear sxk30_firmware < 3.2.33.108 Yes
Hardware netgear sxk30 - No
Operating System netgear sxr30_firmware < 3.2.33.108 Yes
Hardware netgear sxr30 - No
Operating System netgear sxs30_firmware < 3.2.33.108 Yes
Hardware netgear sxs30 - No
Operating System netgear src60_firmware < 2.7.0.122 Yes
Hardware netgear src60 - No
References