1. Home
  2. CVE Database
  3. CVE-2021-45679
HIGH · 8.4

CVE-2021-45679

Certain NETGEAR devices are affected by privilege escalation. This affects R6900P before 1.3.3.140, R7000 before 1.0.11.126, R7000P before 1.3.3.140, and RS400 before 1.5.1.80.

Vulnerability Description

Certain NETGEAR devices are affected by privilege escalation. This affects R6900P before 1.3.3.140, R7000 before 1.0.11.126, R7000P before 1.3.3.140, and RS400 before 1.5.1.80.

CVSS Score

8.4

HIGH

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
NetgearR6900P Firmware< 1.3.3.140
NetgearR6900P-
NetgearR7000 Firmware< 1.0.11.126
NetgearR7000-
NetgearR7000P Firmware< 1.3.3.140
NetgearR7000P-
NetgearRs400 Firmware< 1.5.1.80
NetgearRs400-

References

FAQ

What is CVE-2021-45679?

CVE-2021-45679 is a vulnerability with a CVSS score of 8.4 (HIGH). Certain NETGEAR devices are affected by privilege escalation. This affects R6900P before 1.3.3.140, R7000 before 1.0.11.126, R7000P before 1.3.3.140, and RS400 before 1.5.1.80.

How severe is CVE-2021-45679?

CVE-2021-45679 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-45679?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear R6900P Firmware, Netgear R6900P, Netgear R7000 Firmware, Netgear R7000, Netgear R7000P Firmware.