What is CVE-2021-38517?

CVE-2021-38517 is a vulnerability that affects certain NETGEAR devices, specifically R6400 before 1.0.1.70, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, and XR300 before 1.0.3.50.

What is the severity of CVE-2021-38517?

The severity of CVE-2021-38517 is high with a CVSS score of 7.2.

Which NETGEAR devices are affected by CVE-2021-38517?

The NETGEAR devices affected by CVE-2021-38517 are R6400, RAX75, RAX80, and XR300.

How can I fix the CVE-2021-38517 vulnerability?

To fix the CVE-2021-38517 vulnerability, you should update the firmware of the affected NETGEAR devices to versions 1.0.1.70 for R6400, 1.0.4.120 for RAX75 and RAX80, and 1.0.3.50 for XR300.

Where can I find more information about CVE-2021-38517?

You can find more information about CVE-2021-38517 in the Netgear security advisory available at https://kb.netgear.com/000063772/Security-Advisory-for-Out-of-Bounds-Read-and-Write-on-Some-Routers-PSV-2019-0187.

Vulnerability/
CVE-2021-38517

high

7.2

CWE

125 787

11/8/2021

4/8/2024

CVE-2021-38517

First published: Wed Aug 11 2021(Updated: )

Certain NETGEAR devices are affected by out-of-bounds reads and writes. This affects R6400 before 1.0.1.70, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, and XR300 before 1.0.3.50.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Netgear R6400 Firmware	<1.0.1.70
NETGEAR R6400
Netgear Rax75 Firmware	<1.0.4.120
Netgear Rax75
Netgear Rax80 Firmware	<1.0.4.120
Netgear Rax80
Netgear Xr300 Firmware	<1.0.3.50
Netgear XR300

Never miss a vulnerability like this again

Reference Links

https://kb.netgear.com/000063772/Security-Advisory-for-Out-of-Bounds-Read-and-Write-on-Some-Routers-PSV-2019-0187

Frequently Asked Questions

What is CVE-2021-38517?
CVE-2021-38517 is a vulnerability that affects certain NETGEAR devices, specifically R6400 before 1.0.1.70, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, and XR300 before 1.0.3.50.
What is the severity of CVE-2021-38517?
The severity of CVE-2021-38517 is high with a CVSS score of 7.2.
Which NETGEAR devices are affected by CVE-2021-38517?
The NETGEAR devices affected by CVE-2021-38517 are R6400, RAX75, RAX80, and XR300.
How can I fix the CVE-2021-38517 vulnerability?
To fix the CVE-2021-38517 vulnerability, you should update the firmware of the affected NETGEAR devices to versions 1.0.1.70 for R6400, 1.0.4.120 for RAX75 and RAX80, and 1.0.3.50 for XR300.
Where can I find more information about CVE-2021-38517?
You can find more information about CVE-2021-38517 in the Netgear security advisory available at https://kb.netgear.com/000063772/Security-Advisory-for-Out-of-Bounds-Read-and-Write-on-Some-Routers-PSV-2019-0187.

collector/nvd-index
agent/severity
agent/weakness
agent/author
agent/references
agent/description
agent/type
agent/tags
agent/event
agent/first-publish-date
agent/last-modified-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
vendor/netgear
canonical/netgear r6400 firmware
canonical/netgear r6400
canonical/netgear rax75 firmware
canonical/netgear rax75
canonical/netgear rax80 firmware
canonical/netgear rax80
canonical/netgear xr300 firmware
canonical/netgear xr300

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.