What is the vulnerability ID?

The vulnerability ID is CVE-2021-45611.

Which devices are affected by this vulnerability?

This vulnerability affects DC112A, R6400, RAX200, WNDR3400v3, XR300, R8500, RAX75, and R8300 devices.

What is the severity of CVE-2021-45611?

The severity of CVE-2021-45611 is critical with a severity value of 9.8.

How can an attacker exploit CVE-2021-45611?

An unauthenticated attacker can exploit CVE-2021-45611 through a buffer overflow.

How do I check if my device is vulnerable to CVE-2021-45611?

You can check if your device is vulnerable to CVE-2021-45611 by referring to the Netgear security advisory.

Vulnerability/
CVE-2021-45611

critical

9.8

CWE

120 119

26/12/2021

7/1/2022

CVE-2021-45611: Buffer Overflow

First published: Sun Dec 26 2021(Updated: )

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects DC112A before 1.0.0.52, R6400 before 1.0.1.68, RAX200 before 1.0.3.106, WNDR3400v3 before 1.0.1.38, XR300 before 1.0.3.68, R8500 before 1.0.2.144, RAX75 before 1.0.3.106, R8300 before 1.0.2.144, and RAX80 before 1.0.3.106.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Netgear Dc112a Firmware	<1.0.0.52
Netgear DC112A
Netgear R6400 Firmware	<1.0.1.68
NETGEAR R6400
Netgear R8300 Firmware	<1.0.2.144
NETGEAR R8300
Netgear R8500 Firmware	<1.0.2.144
NETGEAR R8500
NETGEAR R6400v2	<1.0.1.38
NETGEAR WNDR3400v3
Netgear Xr300 Firmware	<1.0.3.68
Netgear XR300
Netgear Rax200 Firmware	<1.0.3.106
NETGEAR RAX200
Netgear Rax75 Firmware	<1.0.3.106
Netgear Rax75
Netgear Rax80 Firmware	<1.0.3.106
Netgear Rax80

Never miss a vulnerability like this again

Reference Links

https://kb.netgear.com/000064488/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2020-0323

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is CVE-2021-45611.
Which devices are affected by this vulnerability?
This vulnerability affects DC112A, R6400, RAX200, WNDR3400v3, XR300, R8500, RAX75, and R8300 devices.
What is the severity of CVE-2021-45611?
The severity of CVE-2021-45611 is critical with a severity value of 9.8.
How can an attacker exploit CVE-2021-45611?
An unauthenticated attacker can exploit CVE-2021-45611 through a buffer overflow.
How do I check if my device is vulnerable to CVE-2021-45611?
You can check if your device is vulnerable to CVE-2021-45611 by referring to the Netgear security advisory.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.