First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBR852 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear Cbr40 Firmware | <2.5.0.24 | |
Netgear Cbr40 | ||
Netgear Cbr750 Firmware | <4.6.3.6 | |
Netgear Cbr750 | ||
Netgear Rbr850 Firmware | <3.2.17.12 | |
NETGEAR RBR850 | ||
Netgear Rbr852 Firmware | <3.2.17.12 | |
Netgear Rbr852 | ||
Netgear Rbs850 Firmware | <3.2.17.12 | |
Netgear Rbs850 | ||
All of | ||
Netgear Cbr40 Firmware | <2.5.0.24 | |
Netgear Cbr40 | ||
All of | ||
Netgear Cbr750 Firmware | <4.6.3.6 | |
Netgear Cbr750 | ||
All of | ||
Netgear Rbr850 Firmware | <3.2.17.12 | |
NETGEAR RBR850 | ||
All of | ||
Netgear Rbr852 Firmware | <3.2.17.12 | |
Netgear Rbr852 | ||
All of | ||
Netgear Rbs850 Firmware | <3.2.17.12 | |
Netgear Rbs850 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The CVE ID of this vulnerability is CVE-2021-45504.
This vulnerability affects CBR40 before version 2.5.0.24, CBR750 before version 4.6.3.6, RBR852 before version 3.2.17.12, RBR850 before version 3.2.17.12, and RBS850 before version 3.2.17.12.
The severity of CVE-2021-45504 is critical with a CVSS score of 9.8.
This vulnerability allows for authentication bypass on certain NETGEAR devices.
Yes, a fix is available. It is recommended to update the affected devices to the latest firmware versions.