CVE-2021-38517
First published: Wed Aug 11 2021(Updated: )
Certain NETGEAR devices are affected by out-of-bounds reads and writes. This affects R6400 before 1.0.1.70, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, and XR300 before 1.0.3.50.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear R6400 Firmware | <1.0.1.70 | |
| NETGEAR R6400 | ||
| Netgear Rax75 Firmware | <1.0.4.120 | |
| Netgear Rax75 | ||
| Netgear Rax80 Firmware | <1.0.4.120 | |
| Netgear Rax80 | ||
| Netgear Xr300 Firmware | <1.0.3.50 | |
| Netgear XR300 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-38517?
CVE-2021-38517 is a vulnerability that affects certain NETGEAR devices, specifically R6400 before 1.0.1.70, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, and XR300 before 1.0.3.50.
What is the severity of CVE-2021-38517?
The severity of CVE-2021-38517 is high with a CVSS score of 7.2.
Which NETGEAR devices are affected by CVE-2021-38517?
The NETGEAR devices affected by CVE-2021-38517 are R6400, RAX75, RAX80, and XR300.
How can I fix the CVE-2021-38517 vulnerability?
To fix the CVE-2021-38517 vulnerability, you should update the firmware of the affected NETGEAR devices to versions 1.0.1.70 for R6400, 1.0.4.120 for RAX75 and RAX80, and 1.0.3.50 for XR300.
Where can I find more information about CVE-2021-38517?
You can find more information about CVE-2021-38517 in the Netgear security advisory available at https://kb.netgear.com/000063772/Security-Advisory-for-Out-of-Bounds-Read-and-Write-on-Some-Routers-PSV-2019-0187.