Vulnerability Description
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects EX6120 before 1.0.0.66, EX6130 before 1.0.0.46, EX7000 before 1.0.1.106, EX7500 before 1.0.1.76, EX3700 before 1.0.0.94, EX3800 before 1.0.0.94, RBR850 before 4.6.3.9, RBS850 before 4.6.3.9, and RBK852 before 4.6.3.9.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Ex6120 Firmware | < 1.0.0.66 |
| Netgear | Ex6120 | - |
| Netgear | Ex6130 Firmware | < 1.0.0.46 |
| Netgear | Ex6130 | - |
| Netgear | Ex7000 Firmware | < 1.0.1.106 |
| Netgear | Ex7000 | - |
| Netgear | Ex7500 Firmware | < 1.0.1.76 |
| Netgear | Ex7500 | - |
| Netgear | Ex3700 Firmware | < 1.0.0.94 |
| Netgear | Ex3700 | - |
| Netgear | Ex3800 Firmware | < 1.0.0.94 |
| Netgear | Ex3800 | - |
| Netgear | Rbr850 Firmware | < 4.6.3.9 |
| Netgear | Rbr850 | - |
| Netgear | Rbs850 Firmware | < 4.6.3.9 |
| Netgear | Rbs850 | - |
| Netgear | Rbk852 Firmware | < 4.6.3.9 |
| Netgear | Rbk852 | - |
Related Weaknesses (CWE)
References
- https://kb.netgear.com/000064458/Security-Advisory-for-Post-Authentication-CommaVendor Advisory
- https://kb.netgear.com/000064458/Security-Advisory-for-Post-Authentication-CommaVendor Advisory
FAQ
What is CVE-2021-45533?
CVE-2021-45533 is a vulnerability with a CVSS score of 8.4 (HIGH). Certain NETGEAR devices are affected by command injection by an authenticated user. This affects EX6120 before 1.0.0.66, EX6130 before 1.0.0.46, EX7000 before 1.0.1.106, EX7500 before 1.0.1.76, EX3700...
How severe is CVE-2021-45533?
CVE-2021-45533 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-45533?
Check the references section above for vendor advisories and patch information. Affected products include: Netgear Ex6120 Firmware, Netgear Ex6120, Netgear Ex6130 Firmware, Netgear Ex6130, Netgear Ex7000 Firmware.