CVE-2021-45554

Name of the Vulnerable Software and Affected Versions NETGEAR R6400 versions prior to 1.0.1.74 NETGEAR R6400v2 versions prior to 1.0.4.118 NETGEAR R6700v3 versions prior to 1.0.4.118 NETGEAR R7000 versions prior to 1.0.11.126 NETGEAR R6900P versions prior to 1.3.3.140 NETGEAR R7000P versions prior to 1.3.3.140 NETGEAR R8000 versions prior to 1.0.4.74

Description The issue is related to command injection by an authenticated user due to the lack of input data sanitization. This allows a remote attacker to execute arbitrary commands.

Recommendations For NETGEAR R6400 version prior to 1.0.1.74, update to version 1.0.1.74 or later. For NETGEAR R6400v2 version prior to 1.0.4.118, update to version 1.0.4.118 or later. For NETGEAR R6700v3 version prior to 1.0.4.118, update to version 1.0.4.118 or later. For NETGEAR R7000 version prior to 1.0.11.126, update to version 1.0.11.126 or later. For NETGEAR R6900P version prior to 1.3.3.140, update to version 1.3.3.140 or later. For NETGEAR R7000P version prior to 1.3.3.140, update to version 1.3.3.140 or later. For NETGEAR R8000 version prior to 1.0.4.74, update to version 1.0.4.74 or later.