CVE-2021-45642

EPSS 0.52%
Veröffentlicht 26.12.2021 01:15:19
Zuletzt bearbeitet 21.11.2024 06:32:45
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D7800 before 1.0.1.64, EX6250 before 1.0.0.134, EX7700 before 1.0.0.222, LBR20 before 2.6.3.50, RBS50Y before 2.7.3.22, R8900 before 1.0.5.26, R9000 before 1.0.5.26, XR450 before 2.3.2.66, XR500 before 2.3.2.66, XR700 before 1.0.1.36, EX7320 before 1.0.0.134, RAX120 before 1.2.2.24, EX7300v2 before 1.0.0.134, RAX120v2 before 1.2.2.24, EX6410 before 1.0.0.134, RBR10 before 2.7.3.22, RBR20 before 2.7.3.22, RBR40 before 2.7.3.22, RBR50 before 2.7.3.22, EX6420 before 1.0.0.134, RBS10 before 2.7.3.22, RBS20 before 2.7.3.22, RBS40 before 2.7.3.22, RBS50 before 2.7.3.22, EX6400v2 before 1.0.0.134, RBK12 before 2.7.3.22, RBK20 before 2.7.3.22, RBK40 before 2.7.3.22, and RBK50 before 2.7.3.22.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Netgear ≫ D7800 Firmware Version < 1.0.1.64

Netgear ≫ D7800 Version-

Netgear ≫ Ex6250 Firmware Version < 1.0.0.134

Netgear ≫ Ex6250 Version-

Netgear ≫ Ex7700 Firmware Version < 1.0.0.222

Netgear ≫ Ex7700 Version-

Netgear ≫ Lbr20 Firmware Version < 2.6.3.50

Netgear ≫ Lbr20 Version-

Netgear ≫ Rbs50y Firmware Version < 2.7.3.22

Netgear ≫ Rbs50y Version-

Netgear ≫ Rbs50 Firmware Version < 2.7.3.22

Netgear ≫ Rbs50y Firmware Version2.7.3.22

Netgear ≫ Rbs20 Firmware Version < 2.7.3.22

Netgear ≫ Rbs20 Version-

Netgear ≫ Rbs10 Firmware Version < 2.7.3.22

Netgear ≫ Rbs10 Version-

Netgear ≫ Rbs40 Firmware Version < 2.7.3.22

Netgear ≫ Rbs40 Version-

Netgear ≫ R8900 Firmware Version < 1.0.5.26

Netgear ≫ R8900 Version-

Netgear ≫ R9000 Firmware Version < 1.0.5.26

Netgear ≫ R9000 Version-

Netgear ≫ Xr450 Firmware Version < 2.3.2.66

Netgear ≫ Xr450 Version-

Netgear ≫ Xr500 Firmware Version < 2.3.2.66

Netgear ≫ Xr500 Version-

Netgear ≫ Xr700 Firmware Version < 1.0.1.36

Netgear ≫ Xr700 Version-

Netgear ≫ Ex7320 Firmware Version < 1.0.0.134

Netgear ≫ Ex7320 Version-

Netgear ≫ Rax120 Firmware Version < 1.2.2.24

Netgear ≫ Rax120 Version-

Netgear ≫ Ex7300v2 Firmware Version < 1.0.0.134

Netgear ≫ Ex7300v2 Version-

Netgear ≫ Rax120v2 Firmware Version < 1.2.2.24

Netgear ≫ Rax120v2 Version-

Netgear ≫ Ex6410 Firmware Version < 1.0.0.134

Netgear ≫ Ex6410 Version-

Netgear ≫ Ex6420 Firmware Version < 1.0.0.134

Netgear ≫ Ex6420 Version-

Netgear ≫ Ex6400v2 Firmware Version < 1.0.0.134

Netgear ≫ Ex6400v2 Version-

Netgear ≫ Rbr10 Firmware Version < 2.7.3.22

Netgear ≫ Rbr10 Version-

Netgear ≫ Rbr20 Firmware Version < 2.7.3.22

Netgear ≫ Rbr20 Version-

Netgear ≫ Rbr40 Firmware Version < 2.7.3.22

Netgear ≫ Rbr40 Version-

Netgear ≫ Rbr50 Firmware Version < 2.7.3.22

Netgear ≫ Rbr50 Version-

Netgear ≫ Rbk12 Firmware Version < 2.7.3.22

Netgear ≫ Rbk12 Version-

Netgear ≫ Rbk20 Firmware Version < 2.7.3.22

Netgear ≫ Rbk20 Version-

Netgear ≫ Rbk40 Firmware Version < 2.7.3.22

Netgear ≫ Rbk40 Version-

Netgear ≫ Rbk50 Firmware Version < 2.7.3.22

Netgear ≫ Rbk50 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.52%	0.64

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
cve@mitre.org	7.5	1.7	5.3	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L

https://kb.netgear.com/000064491/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-Extenders-and-WiFi-Systems-PSV-2020-0427

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-45642

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-45642

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-45642

EUVD