First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.68, D6400 before 1.0.0.102, D7000v2 before 1.0.0.74, D8500 before 1.0.3.60, DC112A before 1.0.0.56, R6300v2 before 1.0.4.50, R6400 before 1.0.1.68, R7000 before 1.0.11.116, R7100LG before 1.0.0.70, RBS40V before 2.6.2.8, RBW30 before 2.6.2.2, RS400 before 1.5.1.80, R7000P before 1.3.2.132, and R6900P before 1.3.2.132.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Netgear D6220 Firmware | <1.0.0.68 | |
NETGEAR D6220 | ||
NETGEAR R6400v2 | <1.0.0.102 | |
Netgear D6400 | ||
NETGEAR R6400v2 | <1.0.0.74 | |
NETGEAR R6400v2 | ||
Netgear D8500 Firmware | <1.0.3.60 | |
Netgear D8500 | ||
Netgear Dc112a Firmware | <1.0.0.56 | |
Netgear DC112A | ||
Netgear R6300v2 Firmware | <1.0.4.50 | |
Netgear R6300v2 | ||
Netgear R6400 Firmware | <1.0.1.68 | |
NETGEAR R6400 | ||
Netgear R7000 Firmware | <1.0.11.116 | |
NETGEAR R7000 | ||
Netgear R7100lg Firmware | <1.0.0.70 | |
Netgear R7100LG | ||
Netgear R7000p Firmware | <1.3.2.132 | |
Netgear R7000P | ||
Netgear Rbs40v Firmware | <2.6.2.8 | |
Netgear Rbs40v | ||
Netgear Rbw30 Firmware | <2.6.2.2 | |
Netgear Rbw30 | ||
Netgear Rs400 Firmware | <1.5.1.80 | |
Netgear Rs400 | ||
Netgear R6900p Firmware | <1.3.2.132 | |
Netgear R6900P | ||
All of | ||
Netgear D6220 Firmware | <1.0.0.68 | |
NETGEAR D6220 | ||
All of | ||
Netgear D6400 Firmware | <1.0.0.102 | |
Netgear D6400 | ||
All of | ||
Netgear D7000v2 Firmware | <1.0.0.74 | |
Netgear D7000v2 | ||
All of | ||
Netgear D8500 Firmware | <1.0.3.60 | |
Netgear D8500 | ||
All of | ||
Netgear Dc112a Firmware | <1.0.0.56 | |
Netgear DC112A | ||
All of | ||
Netgear R6300v2 Firmware | <1.0.4.50 | |
Netgear R6300v2 | ||
All of | ||
Netgear R6400 Firmware | <1.0.1.68 | |
NETGEAR R6400 | ||
All of | ||
Netgear R7000 Firmware | <1.0.11.116 | |
NETGEAR R7000 | ||
All of | ||
Netgear R7100lg Firmware | <1.0.0.70 | |
Netgear R7100LG | ||
All of | ||
Netgear R7000p Firmware | <1.3.2.132 | |
Netgear R7000P | ||
All of | ||
Netgear Rbs40v Firmware | <2.6.2.8 | |
Netgear Rbs40v | ||
All of | ||
Netgear Rbw30 Firmware | <2.6.2.2 | |
Netgear Rbw30 | ||
All of | ||
Netgear Rs400 Firmware | <1.5.1.80 | |
Netgear Rs400 | ||
All of | ||
Netgear R6900p Firmware | <1.3.2.132 | |
Netgear R6900P |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2021-45638 is critical with a severity value of 9.8.
NETGEAR devices D6220, D6400, D7000v2, D8500, DC112A, R6300v2, R6400, and R7000 are affected by CVE-2021-45638.
CVE-2021-45638 allows an unauthenticated attacker to execute a stack-based buffer overflow on the affected NETGEAR devices.
Yes, firmware version 1.0.0.68 of NETGEAR D6220 is vulnerable to CVE-2021-45638.
To fix CVE-2021-45638, you should update your NETGEAR device firmware to the latest version provided by NETGEAR.