CRITICAL✓ PATCH🇬🇧 English

CVE-2021-45507

CVSS 9.6v3.1pub. 2021-12-26upd. 2024-11-21

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBW30 before 2.6.2.2, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, and RBS40V before 2.6.2.8.

oryginał EN
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Netgear Cbr40

    HW
    Netgear
    wszystkie wersje
  • Netgear Cbr40 Firmware

    OS
    Netgear
    < 2.5.0.24
  • Netgear Cbr750

    HW
    Netgear
    wszystkie wersje
  • Netgear Cbr750 Firmware

    OS
    Netgear
    < 4.6.3.6
  • Netgear Rbk752

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbk752 Firmware

    OS
    Netgear
    < 3.2.17.12
  • Netgear Rbk852

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbk852 Firmware

    OS
    Netgear
    < 3.2.17.12
  • Netgear Rbr750

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbr750 Firmware

    OS
    Netgear
    < 3.2.17.12
  • Netgear Rbr850

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbr850 Firmware

    OS
    Netgear
    < 3.2.17.12
  • Netgear Rbs40v

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbs40v Firmware

    OS
    Netgear
    < 2.6.2.8
  • Netgear Rbs750

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbs750 Firmware

    OS
    Netgear
    < 3.2.17.12
  • Netgear Rbs850

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbs850 Firmware

    OS
    Netgear
    < 3.2.17.12
  • Netgear Rbw30

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbw30 Firmware

    OS
    Netgear
    < 2.6.2.2
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2023-49007CRITICAL9.8PL ✓ten sam produkt

Stack-based buffer overflow w Netgear Orbi RBR750 — RCE przez sieć

CVE-2023-36187CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attac...

CVE-2022-37337CRITICAL9.1ten sam produkt

A command execution vulnerability exists in the access control functionality of Netgear Orbi Router RBR750 4.6...

CVE-2021-45504CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 befo...

CVE-2021-45502CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...