First published: Tue Mar 23 2021(Updated: )
Certain NETGEAR devices are affected by authentication bypass. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
NETGEAR RBK852 | <3.2.17.12 | |
NETGEAR Orbi RBK852 | ||
NETGEAR RBK853 | <3.2.17.12 | |
NETGEAR Orbi RBK853 | ||
NETGEAR RBK854 | <3.2.17.12 | |
NETGEAR Orbi RBK854 | ||
NETGEAR RBR850 firmware | <3.2.17.12 | |
NETGEAR RBR850 firmware | ||
NETGEAR RBS850 Firmware | <3.2.17.12 | |
NETGEAR RBS850 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-29066 is classified as a high severity vulnerability due to the authentication bypass it allows on certain NETGEAR devices.
To fix CVE-2021-29066, update your NETGEAR devices to firmware version 3.2.17.12 or later.
CVE-2021-29066 affects NETGEAR RBK852, RBK853, RBK854, RBR850, and RBS850 devices running firmware versions prior to 3.2.17.12.
Failing to address CVE-2021-29066 may allow unauthorized access to your network due to the authentication bypass vulnerability.
Your NETGEAR device is vulnerable to CVE-2021-29066 if it is one of the specified models and is running firmware versions before 3.2.17.12.