1. Home
  2. CVE Database
  3. CVE-2021-45529
HIGH · 7.3

CVE-2021-45529

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects CBR40 before 2.3.5.12, D7000v2 before 1.0.0.66, D8500 before 1.0.3.58, R6400 before 1.0.1.70, R7000 bef...

Vulnerability Description

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects CBR40 before 2.3.5.12, D7000v2 before 1.0.0.66, D8500 before 1.0.3.58, R6400 before 1.0.1.70, R7000 before 1.0.11.126, R6900P before 1.3.2.124, R7000P before 1.3.2.124, R7900 before 1.0.4.30, R8000 before 1.0.4.52, and WNR3500Lv2 before 1.2.0.62.

CVSS Score

7.3

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality
LOW
Integrity
LOW
Availability
HIGH

Affected Products

VendorProductVersions
NetgearCbr40 Firmware< 2.3.5.12
NetgearCbr40-
NetgearD7000V2 Firmware< 1.0.0.66
NetgearD7000V2-
NetgearD8500 Firmware< 1.0.3.58
NetgearD8500-
NetgearR6400 Firmware< 1.0.1.70
NetgearR6400-
NetgearR7000 Firmware< 1.0.11.126
NetgearR7000-
NetgearR7000P Firmware< 1.3.2.124
NetgearR7000P-
NetgearR6900P Firmware< 1.3.2.124
NetgearR6900P-
NetgearR7900 Firmware< 1.0.4.30
NetgearR7900-
NetgearR8000 Firmware< 1.0.4.52
NetgearR8000-
NetgearWnr3500Lv2 Firmware< 1.2.0.62
NetgearWnr3500Lv2-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2021-45529?

CVE-2021-45529 is a vulnerability with a CVSS score of 7.3 (HIGH). Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects CBR40 before 2.3.5.12, D7000v2 before 1.0.0.66, D8500 before 1.0.3.58, R6400 before 1.0.1.70, R7000 bef...

How severe is CVE-2021-45529?

CVE-2021-45529 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-45529?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear Cbr40 Firmware, Netgear Cbr40, Netgear D7000V2 Firmware, Netgear D7000V2, Netgear D8500 Firmware.