First published: Sat Dec 25 2021(Updated: )
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol. (Affected Chipsets MT7603E, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 7.4.0.0; Out-of-bounds read).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mediatek Mt7603e Firmware | =7.4.0.0 | |
Mediatek Mt7603e | ||
Mediatek Mt7612 Firmware | =7.4.0.0 | |
Mediatek Mt7612 | ||
Mediatek Mt7613 Firmware | =7.4.0.0 | |
Mediatek Mt7613 | ||
Mediatek Mt7615 Firmware | =7.4.0.0 | |
Mediatek Mt7615 | ||
Mediatek Mt7622 Firmware | =7.4.0.0 | |
Mediatek Mt7622 | ||
Mediatek Mt7628 Firmware | =7.4.0.0 | |
Mediatek Mt7628 | ||
Mediatek Mt7629 Firmware | =7.4.0.0 | |
Mediatek Mt7629 | ||
Mediatek Mt7915 Firmware | =7.4.0.0 | |
Mediatek Mt7915 | ||
Mediatek Mt7620 Firmware | =7.4.0.0 | |
Mediatek Mt7620 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-32467 refers to a vulnerability in MediaTek microchips used in NETGEAR devices and other devices that mishandle the WPS protocol.
The affected chipsets include MT7603E, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, and MT7915.
The severity of CVE-2021-32467 is high, with a severity value of 7.5.
CVE-2021-32467 can affect NETGEAR devices that use MediaTek microchips by mishandling the WPS protocol.
To fix the CVE-2021-32467 vulnerability in NETGEAR devices, you should update the firmware to the latest version provided by NETGEAR.