First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects EX6120 before 1.0.0.66, EX6130 before 1.0.0.46, EX7000 before 1.0.1.106, EX7500 before 1.0.1.76, EX3700 before 1.0.0.94, EX3800 before 1.0.0.94, RBR850 before 4.6.3.9, RBS850 before 4.6.3.9, and RBK852 before 4.6.3.9.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear Ex6120 Firmware | <1.0.0.66 | |
Netgear EX6120 | ||
Netgear Ex6130 Firmware | <1.0.0.46 | |
Netgear Ex6130 | ||
Netgear Ex7000 Firmware | <1.0.1.106 | |
NETGEAR EX7000 | ||
Netgear Ex7500 Firmware | <1.0.1.76 | |
Netgear Ex7500 | ||
Netgear Ex3700 Firmware | <1.0.0.94 | |
Netgear EX3700 | ||
Netgear Ex3800 Firmware | <1.0.0.94 | |
Netgear Ex3800 | ||
Netgear Rbr850 Firmware | <4.6.3.9 | |
NETGEAR RBR850 | ||
Netgear Rbs850 Firmware | <4.6.3.9 | |
Netgear Rbs850 | ||
Netgear Rbk852 Firmware | <4.6.3.9 | |
Netgear Rbk852 | ||
All of | ||
Netgear Ex6120 Firmware | <1.0.0.66 | |
Netgear EX6120 | ||
All of | ||
Netgear Ex6130 Firmware | <1.0.0.46 | |
Netgear Ex6130 | ||
All of | ||
Netgear Ex7000 Firmware | <1.0.1.106 | |
NETGEAR EX7000 | ||
All of | ||
Netgear Ex7500 Firmware | <1.0.1.76 | |
Netgear Ex7500 | ||
All of | ||
Netgear Ex3700 Firmware | <1.0.0.94 | |
Netgear EX3700 | ||
All of | ||
Netgear Ex3800 Firmware | <1.0.0.94 | |
Netgear Ex3800 | ||
All of | ||
Netgear Rbr850 Firmware | <4.6.3.9 | |
NETGEAR RBR850 | ||
All of | ||
Netgear Rbs850 Firmware | <4.6.3.9 | |
Netgear Rbs850 | ||
All of | ||
Netgear Rbk852 Firmware | <4.6.3.9 | |
Netgear Rbk852 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-45533 is a vulnerability that allows command injection by an authenticated user on certain NETGEAR devices.
CVE-2021-45533 affects the following NETGEAR devices: EX6120 before 1.0.0.66, EX6130 before 1.0.0.46, EX7000 before 1.0.1.106, EX7500 before 1.0.1.76, EX3700 before 1.0.0.94, EX3800 before 1.0.0.94, RBR850 before 4.6.3.9, RBS850 before 4.6.3.9, and RBK852 before 4.6.3.9.
CVE-2021-45533 has a severity of 6.8 (high).
CVE-2021-45533 allows an authenticated user to inject and execute arbitrary commands on affected NETGEAR devices.
To fix CVE-2021-45533, you should update the firmware of your NETGEAR device to the latest version provided by NETGEAR.