PT-2021-5727 · NetGear · R6350+18
Published
2021-12-22
·
Updated
2022-07-12
·
CVE-2021-45501
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
NETGEAR AC2400 versions prior to 1.1.0.84
NETGEAR AC2600 versions prior to 1.1.0.84
NETGEAR D7000 versions prior to 1.0.1.82
NETGEAR R6020 versions prior to 1.0.0.52
NETGEAR R6080 versions prior to 1.0.0.52
NETGEAR R6120 versions prior to 1.0.0.80
NETGEAR R6220 versions prior to 1.1.0.110
NETGEAR R6230 versions prior to 1.1.0.110
NETGEAR R6260 versions prior to 1.1.0.84
NETGEAR R6330 versions prior to 1.1.0.84
NETGEAR R6350 versions prior to 1.1.0.84
NETGEAR R6700v2 versions prior to 1.1.0.84
NETGEAR R6800 versions prior to 1.1.0.84
NETGEAR R6850 versions prior to 1.1.0.84
NETGEAR R6900v2 versions prior to 1.1.0.84
NETGEAR R7200 versions prior to 1.1.0.84
NETGEAR R7350 versions prior to 1.1.0.84
NETGEAR R7400 versions prior to 1.1.0.84
NETGEAR R7450 versions prior to 1.1.0.84
Description
The issue is related to authentication bypass in certain NETGEAR devices. This can allow a remote attacker to elevate their privileges due to weaknesses in the authentication procedure.
Recommendations
For NETGEAR AC2400 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR AC2600 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR D7000 version prior to 1.0.1.82, update to version 1.0.1.82 or later.
For NETGEAR R6020 version prior to 1.0.0.52, update to version 1.0.0.52 or later.
For NETGEAR R6080 version prior to 1.0.0.52, update to version 1.0.0.52 or later.
For NETGEAR R6120 version prior to 1.0.0.80, update to version 1.0.0.80 or later.
For NETGEAR R6220 version prior to 1.1.0.110, update to version 1.1.0.110 or later.
For NETGEAR R6230 version prior to 1.1.0.110, update to version 1.1.0.110 or later.
For NETGEAR R6260 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R6330 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R6350 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R6700v2 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R6800 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R6850 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R6900v2 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R7200 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R7350 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R7400 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
For NETGEAR R7450 version prior to 1.1.0.84, update to version 1.1.0.84 or later.
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ac2400
Ac2600
D7000
R6020
R6080
R6120
R6220
R6230
R6260
R6330
R6350
R6700V2
R6800
R6850
R6900V2
R7200
R7350
R7400
R7450