CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2021-45638

CVSS 9.6v3.1pub. 2021-12-26upd. 2024-11-21

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.68, D6400 before 1.0.0.102, D7000v2 before 1.0.0.74, D8500 before 1.0.3.60, DC112A before 1.0.0.56, R6300v2 before 1.0.4.50, R6400 before 1.0.1.68, R7000 before 1.0.11.116, R7100LG before 1.0.0.70, RBS40V before 2.6.2.8, RBW30 before 2.6.2.2, RS400 before 1.5.1.80, R7000P before 1.3.2.132, and R6900P before 1.3.2.132.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Netgear D6220

    HW
    Netgear
    wszystkie wersje
  • Netgear D6220 Firmware

    OS
    Netgear
    < 1.0.0.68
  • Netgear D6400

    HW
    Netgear
    wszystkie wersje
  • Netgear D6400 Firmware

    OS
    Netgear
    < 1.0.0.102
  • Netgear D7000v2

    HW
    Netgear
    wszystkie wersje
  • Netgear D7000v2 Firmware

    OS
    Netgear
    < 1.0.0.74
  • Netgear D8500

    HW
    Netgear
    wszystkie wersje
  • Netgear D8500 Firmware

    OS
    Netgear
    < 1.0.3.60
  • Netgear Dc112a

    HW
    Netgear
    wszystkie wersje
  • Netgear Dc112a Firmware

    OS
    Netgear
    < 1.0.0.56
  • Netgear R6300v2

    HW
    Netgear
    wszystkie wersje
  • Netgear R6300v2 Firmware

    OS
    Netgear
    < 1.0.4.50
  • Netgear R6400

    HW
    Netgear
    wszystkie wersje
  • Netgear R6400 Firmware

    OS
    Netgear
    < 1.0.1.68
  • Netgear R6900p

    HW
    Netgear
    wszystkie wersje
  • Netgear R6900p Firmware

    OS
    Netgear
    < 1.3.2.132
  • Netgear R7000

    HW
    Netgear
    wszystkie wersje
  • Netgear R7000 Firmware

    OS
    Netgear
    < 1.0.11.116
  • Netgear R7000p

    HW
    Netgear
    wszystkie wersje
  • Netgear R7000p Firmware

    OS
    Netgear
    < 1.3.2.132
  • Netgear R7100lg

    HW
    Netgear
    wszystkie wersje
  • Netgear R7100lg Firmware

    OS
    Netgear
    < 1.0.0.70
  • Netgear Rbs40v

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbs40v Firmware

    OS
    Netgear
    < 2.6.2.8
  • Netgear Rbw30

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbw30 Firmware

    OS
    Netgear
    < 2.6.2.2
  • Netgear Rs400

    HW
    Netgear
    wszystkie wersje
  • Netgear Rs400 Firmware

    OS
    Netgear
    < 1.5.1.80
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Auth BypassMemory
CWE
References

Related vulnerabilities

CVE-2025-28219CRITICAL9.8PL ✓ten sam produkt

OS command injection w Netgear DC112A — zdalne wykonanie poleceń

CVE-2023-36187CRITICAL9.8ten sam produkt

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attac...

CVE-2023-38928CRITICAL9.8ten sam produkt

Netgear R7100LG 1.0.0.78 was discovered to contain a command injection vulnerability via the password paramete...

CVE-2022-48322CRITICAL9.8ten sam produkt

NETGEAR Nighthawk WiFi Mesh systems and routers are affected by a stack-based buffer overflow vulnerability. T...

CVE-2022-44187CRITICAL9.8ten sam produkt

Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via wan_dns1_pri.