CVE-2021-45644
First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 before 1.2.0.88, AC2400 before 1.2.0.88, AC2600 before 1.2.0.88, R6220 before 1.1.0.110, R6230 before 1.1.0.110, R6260 before 1.1.0.84, R6330 before 1.1.0.84, R6350 before 1.1.0.84, R6700v2 before 1.2.0.88, R6800 before 1.2.0.88, R6850 before 1.1.0.84, R6900v2 before 1.2.0.88, R7200 before 1.2.0.88, R7350 before 1.2.0.88, R7400 before 1.2.0.88, and R7450 before 1.2.0.88.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| NETGEAR AC2100 | <1.2.0.88 | |
| NETGEAR AC2100 firmware | ||
| All of | ||
| NETGEAR AC2400 firmware | <1.2.0.88 | |
| NETGEAR AC2400 firmware | ||
| All of | ||
| NETGEAR AC2600 firmware | <1.2.0.88 | |
| NETGEAR AC2600 | ||
| All of | ||
| NETGEAR R6220 firmware | <1.1.0.110 | |
| NETGEAR R6220 firmware | ||
| All of | ||
| NETGEAR R6230 firmware | <1.1.0.110 | |
| NETGEAR R6230 firmware | ||
| All of | ||
| NETGEAR R6260 firmware | <1.1.0.84 | |
| NETGEAR R6260 firmware | ||
| All of | ||
| NETGEAR R6330 firmware | <1.1.0.84 | |
| NETGEAR R6330 firmware | ||
| All of | ||
| NETGEAR R6350 firmware | <1.1.0.84 | |
| NETGEAR R6350 firmware | ||
| All of | ||
| Netgear R6700 Firmware | <1.2.0.88 | |
| NETGEAR R6700v2 firmware | ||
| All of | ||
| NETGEAR R6800 firmware | <1.2.0.88 | |
| NETGEAR R6800 firmware | ||
| All of | ||
| NETGEAR R6850 firmware | <1.1.0.84 | |
| Netgear R6850 | ||
| All of | ||
| NETGEAR R6900v2 | <1.2.0.88 | |
| NETGEAR R6900v2 firmware | ||
| All of | ||
| NETGEAR R7200 firmware | <1.2.0.88 | |
| NETGEAR R7200 firmware | ||
| All of | ||
| NETGEAR R7350 firmware | <1.2.0.88 | |
| NETGEAR R7350 firmware | ||
| All of | ||
| NETGEAR R7400 firmware | <1.2.0.88 | |
| NETGEAR R7400 firmware | ||
| All of | ||
| NETGEAR R7450 firmware | <1.2.0.88 | |
| NETGEAR R7450 firmware | ||
| NETGEAR AC2100 | <1.2.0.88 | |
| NETGEAR AC2100 firmware | ||
| NETGEAR AC2400 firmware | <1.2.0.88 | |
| NETGEAR AC2400 firmware | ||
| NETGEAR AC2600 firmware | <1.2.0.88 | |
| NETGEAR AC2600 | ||
| NETGEAR R6220 firmware | <1.1.0.110 | |
| NETGEAR R6220 firmware | ||
| NETGEAR R6230 firmware | <1.1.0.110 | |
| NETGEAR R6230 firmware | ||
| NETGEAR R6260 firmware | <1.1.0.84 | |
| NETGEAR R6260 firmware | ||
| NETGEAR R6330 firmware | <1.1.0.84 | |
| NETGEAR R6330 firmware | ||
| NETGEAR R6350 firmware | <1.1.0.84 | |
| NETGEAR R6350 firmware | ||
| Netgear R6700 Firmware | <1.2.0.88 | |
| NETGEAR R6700v2 firmware | ||
| NETGEAR R6800 firmware | <1.2.0.88 | |
| NETGEAR R6800 firmware | ||
| NETGEAR R6850 firmware | <1.1.0.84 | |
| Netgear R6850 | ||
| NETGEAR R6900v2 | <1.2.0.88 | |
| NETGEAR R6900v2 firmware | ||
| NETGEAR R7200 firmware | <1.2.0.88 | |
| NETGEAR R7200 firmware | ||
| NETGEAR R7350 firmware | <1.2.0.88 | |
| NETGEAR R7350 firmware | ||
| NETGEAR R7400 firmware | <1.2.0.88 | |
| NETGEAR R7400 firmware | ||
| NETGEAR R7450 firmware | <1.2.0.88 | |
| NETGEAR R7450 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
Which NETGEAR devices are affected by CVE-2021-45644?
AC2100 before 1.2.0.88, AC2400 before 1.2.0.88, AC2600 before 1.2.0.88, R6220 before 1.1.0.110, R6230 before 1.1.0.110, R6260 before 1.1.0.84, R6330 before 1.1.0.84, R6350 before 1.1.0.84, R6700v2 before 1.2.0.88, R6800 before 1.2.0.88, R6850 before 1.1.0.84, R6900v2 before 1.2.0.88, R7200 before 1.2.0.88, R7350 before 1.2.0.88, R7400 before 1.2.0.88, R7450 before 1.2.0.88.
What is the severity of CVE-2021-45644?
The severity of CVE-2021-45644 is critical with a CVSS score of 9.8.
How do I fix CVE-2021-45644?
To fix CVE-2021-45644, Netgear has released firmware updates for the affected devices. Please refer to the Netgear advisory at https://kb.netgear.com/000064162/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-PSV-2021-0046 for more information.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/remedy
- agent/references
- agent/description
- agent/first-publish-date
- agent/author
- agent/last-modified-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/netgear
- canonical/netgear ac2100
- canonical/netgear ac2100 firmware
- canonical/netgear ac2400 firmware
- canonical/netgear ac2600 firmware
- canonical/netgear ac2600
- canonical/netgear r6220 firmware
- canonical/netgear r6230 firmware
- canonical/netgear r6260 firmware
- canonical/netgear r6330 firmware
- canonical/netgear r6350 firmware
- canonical/netgear r6700 firmware
- canonical/netgear r6700v2 firmware
- canonical/netgear r6800 firmware
- canonical/netgear r6850 firmware
- canonical/netgear r6850
- canonical/netgear r6900v2
- canonical/netgear r6900v2 firmware
- canonical/netgear r7200 firmware
- canonical/netgear r7350 firmware
- canonical/netgear r7400 firmware
- canonical/netgear r7450 firmware