Vulnerability Description
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBR20 before 2.7.3.22, RBR40 before 2.7.3.22, RBR50 before 2.7.2.102, RBS20 before 2.7.3.22, RBS40 before 2.7.3.22, RBR50 before 2.7.2.102, RBK20 before 2.7.3.22, RBK40 before 2.7.3.22, and RBK50 before 2.7.2.102.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Rbr20 Firmware | < 2.7.3.22 |
| Netgear | Rbr20 | - |
| Netgear | Rbr40 Firmware | < 2.7.3.22 |
| Netgear | Rbr40 | - |
| Netgear | Rbr50 Firmware | < 2.7.2.102 |
| Netgear | Rbr50 | - |
| Netgear | Rbs20 Firmware | < 2.7.3.22 |
| Netgear | Rbs20 | - |
| Netgear | Rbs40 Firmware | < 2.7.3.22 |
| Netgear | Rbs40 | - |
| Netgear | Rbk20 Firmware | < 2.7.3.22 |
| Netgear | Rbk20 | - |
| Netgear | Rbk40 Firmware | < 2.7.3.22 |
| Netgear | Rbk40 | - |
| Netgear | Rbk50 Firmware | < 2.7.2.102 |
| Netgear | Rbk50 | - |
Related Weaknesses (CWE)
References
- https://kb.netgear.com/000064474/Security-Advisory-for-Post-Authentication-CommaVendor Advisory
- https://kb.netgear.com/000064474/Security-Advisory-for-Post-Authentication-CommaVendor Advisory
FAQ
What is CVE-2021-45593?
CVE-2021-45593 is a vulnerability with a CVSS score of 8.4 (HIGH). Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBR20 before 2.7.3.22, RBR40 before 2.7.3.22, RBR50 before 2.7.2.102, RBS20 before 2.7.3.22, RBS40 befo...
How severe is CVE-2021-45593?
CVE-2021-45593 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-45593?
Check the references section above for vendor advisories and patch information. Affected products include: Netgear Rbr20 Firmware, Netgear Rbr20, Netgear Rbr40 Firmware, Netgear Rbr40, Netgear Rbr50 Firmware.