CVE-2021-45539

Name of the Vulnerable Software and Affected Versions NETGEAR R7900P versions prior to 1.4.2.84 NETGEAR R7960P versions prior to 1.4.2.84 NETGEAR R8000 versions prior to 1.0.4.74 NETGEAR R8000P versions prior to 1.4.2.84 NETGEAR MR60 versions prior to 1.0.6.110 NETGEAR RAX20 versions prior to 1.0.2.82 NETGEAR RAX45 versions prior to 1.0.2.28 NETGEAR RAX80 versions prior to 1.0.3.106 NETGEAR MS60 versions prior to 1.0.6.110 NETGEAR RAX15 versions prior to 1.0.2.82 NETGEAR RAX50 versions prior to 1.0.2.28 NETGEAR RAX75 versions prior to 1.0.3.106

Description The issue is related to command injection by an authenticated user due to the lack of input data sanitization. This allows a remote attacker to execute arbitrary commands.

Recommendations For NETGEAR R7900P version prior to 1.4.2.84, update to version 1.4.2.84 or later. For NETGEAR R7960P version prior to 1.4.2.84, update to version 1.4.2.84 or later. For NETGEAR R8000 version prior to 1.0.4.74, update to version 1.0.4.74 or later. For NETGEAR R8000P version prior to 1.4.2.84, update to version 1.4.2.84 or later. For NETGEAR MR60 version prior to 1.0.6.110, update to version 1.0.6.110 or later. For NETGEAR RAX20 version prior to 1.0.2.82, update to version 1.0.2.82 or later. For NETGEAR RAX45 version prior to 1.0.2.28, update to version 1.0.2.28 or later. For NETGEAR RAX80 version prior to 1.0.3.106, update to version 1.0.3.106 or later. For NETGEAR MS60 version prior to 1.0.6.110, update to version 1.0.6.110 or later. For NETGEAR RAX15 version prior to 1.0.2.82, update to version 1.0.2.82 or later. For NETGEAR RAX50 version prior to 1.0.2.28, update to version 1.0.2.28 or later. For NETGEAR RAX75 version prior to 1.0.3.106, update to version 1.0.3.106 or later.