CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2021-45609

CVSS 9.6v3.1pub. 2021-12-26upd. 2024-11-21

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D8500 before 1.0.3.58, R6250 before 1.0.4.48, R7000 before 1.0.11.116, R7100LG before 1.0.0.64, R7900 before 1.0.4.38, R8300 before 1.0.2.144, R8500 before 1.0.2.144, XR300 before 1.0.3.68, R7000P before 1.3.2.132, and R6900P before 1.3.2.132.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Netgear D8500

    HW
    Netgear
    wszystkie wersje
  • Netgear D8500 Firmware

    OS
    Netgear
    < 1.0.3.58
  • Netgear R6250

    HW
    Netgear
    wszystkie wersje
  • Netgear R6250 Firmware

    OS
    Netgear
    < 1.0.4.48
  • Netgear R6900p

    HW
    Netgear
    wszystkie wersje
  • Netgear R6900p Firmware

    OS
    Netgear
    < 1.3.2.132
  • Netgear R7000

    HW
    Netgear
    wszystkie wersje
  • Netgear R7000 Firmware

    OS
    Netgear
    < 1.0.11.116
  • Netgear R7000p

    HW
    Netgear
    wszystkie wersje
  • Netgear R7000p Firmware

    OS
    Netgear
    < 1.3.2.132
  • Netgear R7100lg

    HW
    Netgear
    wszystkie wersje
  • Netgear R7100lg Firmware

    OS
    Netgear
    < 1.0.0.64
  • Netgear R7900

    HW
    Netgear
    wszystkie wersje
  • Netgear R7900 Firmware

    OS
    Netgear
    < 1.0.4.38
  • Netgear R8300

    HW
    Netgear
    wszystkie wersje
  • Netgear R8300 Firmware

    OS
    Netgear
    < 1.0.2.144
  • Netgear R8500

    HW
    Netgear
    wszystkie wersje
  • Netgear R8500 Firmware

    OS
    Netgear
    < 1.0.2.144
  • Netgear Xr300

    HW
    Netgear
    wszystkie wersje
  • Netgear Xr300 Firmware

    OS
    Netgear
    < 1.0.3.68
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Auth BypassMemory
CWE
References

Related vulnerabilities

CVE-2023-36187CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attac...

CVE-2023-38928CRITICAL9.8ten sam produkt

Netgear R7100LG 1.0.0.78 was discovered to contain a command injection vulnerability via the password paramete...

CVE-2023-34563CRITICAL9.8ten sam produkt

netgear R6250 Firmware Version 1.0.4.48 is vulnerable to Buffer Overflow after authentication.

CVE-2023-33532CRITICAL9.8ten sam produkt

There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an a...

CVE-2022-48322CRITICAL9.8ten sam produkt

NETGEAR Nighthawk WiFi Mesh systems and routers are affected by a stack-based buffer overflow vulnerability. T...