First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7900P before 1.4.2.84, R7960P before 1.4.2.84, and R8000P before 1.4.2.84.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear R7900p Firmware | <1.4.2.84 | |
Netgear R7900p | ||
Netgear R7960p Firmware | <1.4.2.84 | |
Netgear R7960p | ||
Netgear R8000p Firmware | <1.4.2.84 | |
Netgear R8000p | ||
All of | ||
Netgear R7900p Firmware | <1.4.2.84 | |
Netgear R7900p | ||
All of | ||
Netgear R7960p Firmware | <1.4.2.84 | |
Netgear R7960p | ||
All of | ||
Netgear R8000p Firmware | <1.4.2.84 | |
Netgear R8000p |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-45555.
This vulnerability affects NETGEAR devices R7900P, R7960P, and R8000P with firmware versions before 1.4.2.84.
The severity rating for CVE-2021-45555 is high, with a CVSS score of 6.8.
An authenticated user can perform command injection, potentially allowing them to execute arbitrary commands on the affected devices.
To fix the vulnerability, update the firmware of the affected devices to version 1.4.2.84 or above.