First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R6400 before 1.0.1.68, R7000 before 1.0.11.116, R6900P before 1.3.3.140, R7000P before 1.3.3.140, R7900 before 1.0.4.38, RAX75 before 1.0.3.102, RAX80 before 1.0.3.102, and XR300 before 1.0.3.50.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear R6400 Firmware | <1.0.1.68 | |
NETGEAR R6400 | ||
Netgear R7000 Firmware | <1.0.11.116 | |
NETGEAR R7000 | ||
Netgear R6900p Firmware | <1.3.3.140 | |
Netgear R6900P | ||
Netgear R7000p Firmware | <1.3.3.140 | |
Netgear R7000P | ||
Netgear R7900 Firmware | <1.0.4.38 | |
Netgear R7900 | ||
Netgear Rax75 Firmware | <1.0.3.102 | |
Netgear Rax75 | ||
Netgear Rax80 Firmware | <1.0.3.102 | |
Netgear Rax80 | ||
Netgear Xr300 Firmware | <1.0.3.50 | |
Netgear XR300 | ||
All of | ||
Netgear R6400 Firmware | <1.0.1.68 | |
NETGEAR R6400 | ||
All of | ||
Netgear R7000 Firmware | <1.0.11.116 | |
NETGEAR R7000 | ||
All of | ||
Netgear R6900p Firmware | <1.3.3.140 | |
Netgear R6900P | ||
All of | ||
Netgear R7000p Firmware | <1.3.3.140 | |
Netgear R7000P | ||
All of | ||
Netgear R7900 Firmware | <1.0.4.38 | |
Netgear R7900 | ||
All of | ||
Netgear Rax75 Firmware | <1.0.3.102 | |
Netgear Rax75 | ||
All of | ||
Netgear Rax80 Firmware | <1.0.3.102 | |
Netgear Rax80 | ||
All of | ||
Netgear Xr300 Firmware | <1.0.3.50 | |
Netgear XR300 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-45605 is a vulnerability that affects certain NETGEAR devices and allows an authenticated user to perform a stack-based buffer overflow.
NETGEAR devices R6400, R7000, R6900P, R7000P, R7900, RAX75, RAX80, and XR300 are affected by CVE-2021-45605.
CVE-2021-45605 has a severity rating of 8.8 (high).
An authenticated user can exploit CVE-2021-45605 by performing a stack-based buffer overflow.
To fix CVE-2021-45605, update your NETGEAR device firmware to the latest version provided by NETGEAR.