PT-2021-4630 · NetGear · Netgear R7450+16
D4Rkn3Ss
+2
·
Published
2021-10-13
·
Updated
2022-01-19
·
CVE-2021-34979
CVSS v3.1
8.8
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
NETGEAR R6260 version 1.1.0.78 1.0.1
NETGEAR AC2100, AC2400, AC2600, R6020, R6080, R6120, R6330, R6350, R6700v2, R6800, R6850, R6900v2, R7200, R7350, R7400, R7450 (affected versions not specified)
Description
This issue allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR routers. Authentication is not required to exploit this issue. The specific flaw exists within the handling of SOAP requests, specifically when parsing the
SOAPAction header, the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length buffer. An attacker can leverage this issue to execute code in the context of root.Recommendations
For NETGEAR R6260 version 1.1.0.78 1.0.1, consider disabling the
mini httpd service until a patch is available.
For NETGEAR AC2100, AC2400, AC2600, R6020, R6080, R6120, R6330, R6350, R6700v2, R6800, R6850, R6900v2, R7200, R7350, R7400, R7450, at the moment, there is no information about a newer version that contains a fix for this issue.Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netgear Ac2100
Netgear Ac2400
Netgear Ac2600
Netgear R6020
Netgear R6080
Netgear R6120
Netgear R6260
Netgear R6330
Netgear R6350
Netgear R6700V2
Netgear R6800
Netgear R6850
Netgear R6900V2
Netgear R7200
Netgear R7350
Netgear R7400
Netgear R7450