CVE-2021-45533

Name of the Vulnerable Software and Affected Versions NETGEAR EX6120 versions prior to 1.0.0.66 NETGEAR EX6130 versions prior to 1.0.0.46 NETGEAR EX7000 versions prior to 1.0.1.106 NETGEAR EX7500 versions prior to 1.0.1.76 NETGEAR EX3700 versions prior to 1.0.0.94 NETGEAR EX3800 versions prior to 1.0.0.94 NETGEAR RBR850 versions prior to 4.6.3.9 NETGEAR RBS850 versions prior to 4.6.3.9 NETGEAR RBK852 versions prior to 4.6.3.9

Description The issue is related to command injection by an authenticated user due to a lack of input data sanitization in the embedded software of certain NETGEAR devices. This allows a remote attacker to execute arbitrary commands.

Recommendations For NETGEAR EX6120 version prior to 1.0.0.66, update to version 1.0.0.66 or later. For NETGEAR EX6130 version prior to 1.0.0.46, update to version 1.0.0.46 or later. For NETGEAR EX7000 version prior to 1.0.1.106, update to version 1.0.1.106 or later. For NETGEAR EX7500 version prior to 1.0.1.76, update to version 1.0.1.76 or later. For NETGEAR EX3700 version prior to 1.0.0.94, update to version 1.0.0.94 or later. For NETGEAR EX3800 version prior to 1.0.0.94, update to version 1.0.0.94 or later. For NETGEAR RBR850 version prior to 4.6.3.9, update to version 4.6.3.9 or later. For NETGEAR RBS850 version prior to 4.6.3.9, update to version 4.6.3.9 or later. For NETGEAR RBK852 version prior to 4.6.3.9, update to version 4.6.3.9 or later.