CVE-2021-45658
First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by server-side injection. This affects D7800 before 1.0.1.58, DM200 before 1.0.0.66, EX2700 before 1.0.1.56, EX6150v2 before 1.0.1.86, EX6100v2 before 1.0.1.86, EX6200v2 before 1.0.1.78, EX6250 before 1.0.0.110, EX6410 before 1.0.0.110, EX6420 before 1.0.0.110, EX6400v2 before 1.0.0.110, EX7300 before 1.0.2.144, EX6400 before 1.0.2.144, EX7320 before 1.0.0.110, EX7300v2 before 1.0.0.110, R7500v2 before 1.0.3.48, R7800 before 1.0.2.68, R8900 before 1.0.5.2, R9000 before 1.0.5.2, RAX120 before 1.0.1.90, RBK40 before 2.5.1.16, RBK20 before 2.5.1.16, RBR20 before 2.5.1.16, RBS20 before 2.5.1.16, RBK50 before 2.5.1.16, RBR50 before 2.5.1.16, RBS50 before 2.5.1.16, RBS50Y before 2.6.1.40, WN3000RPv2 before 1.0.0.78, WN3000RPv3 before 1.0.2.80, WNR2000v5 before 1.0.0.72, XR500 before 2.3.2.56, and XR700 before 1.0.1.20.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| NETGEAR D7800 | <1.0.1.58 | |
| NETGEAR D7800 Firmware | ||
| All of | ||
| NETGEAR DM200 | <1.0.0.66 | |
| NETGEAR DM200 firmware | ||
| All of | ||
| NETGEAR EX2700 firmware | <1.0.1.56 | |
| NETGEAR EX2700 firmware | ||
| All of | ||
| NETGEAR EX6150v2 firmware | <1.0.1.86 | |
| NETGEAR EX6150v2 firmware | ||
| All of | ||
| NETGEAR EX6100v2 firmware | <1.0.1.86 | |
| NETGEAR EX6100v2 firmware | ||
| All of | ||
| NETGEAR EX6200v2 firmware | <1.0.1.78 | |
| NETGEAR EX6200v2 firmware | ||
| All of | ||
| NETGEAR EX6250 | <1.0.0.110 | |
| NETGEAR EX6250 | ||
| All of | ||
| NETGEAR EX6410 | <1.0.0.110 | |
| NETGEAR EX6410 | ||
| All of | ||
| NETGEAR EX6420 | <1.0.0.110 | |
| NETGEAR EX6420 | ||
| All of | ||
| NETGEAR EX6400v2 firmware | <1.0.0.110 | |
| NETGEAR EX6400v2 firmware | ||
| All of | ||
| NETGEAR EX7300 | <1.0.2.144 | |
| NETGEAR EX7300v2 | ||
| All of | ||
| NETGEAR EX6400 firmware | <1.0.2.144 | |
| NETGEAR EX6400v2 | ||
| All of | ||
| NETGEAR EX7320 | <1.0.0.110 | |
| NETGEAR EX7320 | ||
| All of | ||
| NETGEAR EX7300v2 firmware | <1.0.0.110 | |
| NETGEAR EX7300v2 firmware | ||
| All of | ||
| NETGEAR R7500v2 firmware | <1.0.3.48 | |
| NETGEAR Nighthawk R7500 | ||
| All of | ||
| NETGEAR R7800 firmware | <1.0.2.68 | |
| NETGEAR R7800 | ||
| All of | ||
| NETGEAR R8900 firmware | <1.0.5.2 | |
| NETGEAR R8900 | ||
| All of | ||
| NETGEAR R9000 firmware | <1.0.5.2 | |
| NETGEAR R9000 firmware | ||
| All of | ||
| NETGEAR RAX120 firmware | <1.0.1.90 | |
| NETGEAR RAX120 firmware | ||
| All of | ||
| NETGEAR RBK40 | <2.5.1.16 | |
| NETGEAR RBK40 firmware | ||
| All of | ||
| NETGEAR RBK20 Router Firmware | <2.5.1.16 | |
| NETGEAR RBK20 firmware | ||
| All of | ||
| NETGEAR RBR20 | <2.5.1.16 | |
| NETGEAR RBR20 | ||
| All of | ||
| NETGEAR RBS20 firmware | <2.5.1.16 | |
| NETGEAR RBS20 firmware | ||
| All of | ||
| NETGEAR RBK50 firmware | <2.5.1.16 | |
| NETGEAR RBK50 | ||
| All of | ||
| NETGEAR RBR50 firmware | <2.5.1.16 | |
| NETGEAR RBR50 firmware | ||
| All of | ||
| NETGEAR RBS50 firmware | <2.5.1.16 | |
| NETGEAR RBS50 | ||
| All of | ||
| NETGEAR RBS50Y firmware | <2.6.1.40 | |
| NETGEAR RBS50Y firmware | ||
| All of | ||
| NETGEAR WN3000RPv2 firmware | <1.0.0.78 | |
| NETGEAR WN3000RPv2 firmware | ||
| All of | ||
| NETGEAR WN3000RPv3 firmware | <1.0.2.80 | |
| NETGEAR WN3000RPv3 | ||
| All of | ||
| NETGEAR WNR2000v5 firmware | <1.0.0.72 | |
| NETGEAR WNR2000v5 firmware | ||
| All of | ||
| NETGEAR XR500 firmware | <2.3.2.56 | |
| NETGEAR XR500 firmware | ||
| All of | ||
| NETGEAR XR700 | <1.0.1.20 | |
| NETGEAR XR700 firmware | ||
| NETGEAR D7800 | <1.0.1.58 | |
| NETGEAR D7800 Firmware | ||
| NETGEAR DM200 | <1.0.0.66 | |
| NETGEAR DM200 firmware | ||
| NETGEAR EX2700 firmware | <1.0.1.56 | |
| NETGEAR EX2700 firmware | ||
| NETGEAR EX6150v2 firmware | <1.0.1.86 | |
| NETGEAR EX6150v2 firmware | ||
| NETGEAR EX6100v2 firmware | <1.0.1.86 | |
| NETGEAR EX6100v2 firmware | ||
| NETGEAR EX6200v2 firmware | <1.0.1.78 | |
| NETGEAR EX6200v2 firmware | ||
| NETGEAR EX6250 | <1.0.0.110 | |
| NETGEAR EX6250 | ||
| NETGEAR EX6410 | <1.0.0.110 | |
| NETGEAR EX6410 | ||
| NETGEAR EX6420 | <1.0.0.110 | |
| NETGEAR EX6420 | ||
| NETGEAR EX6400v2 firmware | <1.0.0.110 | |
| NETGEAR EX6400v2 firmware | ||
| NETGEAR EX7300 | <1.0.2.144 | |
| NETGEAR EX7300v2 | ||
| NETGEAR EX6400 firmware | <1.0.2.144 | |
| NETGEAR EX6400v2 | ||
| NETGEAR EX7320 | <1.0.0.110 | |
| NETGEAR EX7320 | ||
| NETGEAR EX7300v2 firmware | <1.0.0.110 | |
| NETGEAR EX7300v2 firmware | ||
| NETGEAR R7500v2 firmware | <1.0.3.48 | |
| NETGEAR Nighthawk R7500 | ||
| NETGEAR R7800 firmware | <1.0.2.68 | |
| NETGEAR R7800 | ||
| NETGEAR R8900 firmware | <1.0.5.2 | |
| NETGEAR R8900 | ||
| NETGEAR R9000 firmware | <1.0.5.2 | |
| NETGEAR R9000 firmware | ||
| NETGEAR RAX120 firmware | <1.0.1.90 | |
| NETGEAR RAX120 firmware | ||
| NETGEAR RBK40 | <2.5.1.16 | |
| NETGEAR RBK40 firmware | ||
| NETGEAR RBK20 Router Firmware | <2.5.1.16 | |
| NETGEAR RBK20 firmware | ||
| NETGEAR RBR20 | <2.5.1.16 | |
| NETGEAR RBR20 | ||
| NETGEAR RBS20 firmware | <2.5.1.16 | |
| NETGEAR RBS20 firmware | ||
| NETGEAR RBK50 firmware | <2.5.1.16 | |
| NETGEAR RBK50 | ||
| NETGEAR RBR50 firmware | <2.5.1.16 | |
| NETGEAR RBR50 firmware | ||
| NETGEAR RBS50 firmware | <2.5.1.16 | |
| NETGEAR RBS50 | ||
| NETGEAR RBS50Y firmware | <2.6.1.40 | |
| NETGEAR RBS50Y firmware | ||
| NETGEAR WN3000RPv2 firmware | <1.0.0.78 | |
| NETGEAR WN3000RPv2 firmware | ||
| NETGEAR WN3000RPv3 firmware | <1.0.2.80 | |
| NETGEAR WN3000RPv3 | ||
| NETGEAR WNR2000v5 firmware | <1.0.0.72 | |
| NETGEAR WNR2000v5 firmware | ||
| NETGEAR XR500 firmware | <2.3.2.56 | |
| NETGEAR XR500 firmware | ||
| NETGEAR XR700 | <1.0.1.20 | |
| NETGEAR XR700 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-45658?
CVE-2021-45658 is classified as a high severity vulnerability due to the potential for server-side injection attacks affecting multiple NETGEAR devices.
Which NETGEAR devices are affected by CVE-2021-45658?
CVE-2021-45658 impacts several NETGEAR devices, including models such as D7800, DM200, and various EX series extenders when running firmware versions prior to specified thresholds.
How do I fix CVE-2021-45658?
To mitigate CVE-2021-45658, users should update their affected NETGEAR devices to the latest firmware versions as recommended by the manufacturer.
What are the potential consequences of CVE-2021-45658?
Exploitation of CVE-2021-45658 could allow an attacker to execute arbitrary code or commands on the affected devices, leading to unauthorized access or control.
Is there a workaround for CVE-2021-45658 if I can't update my device immediately?
While immediate updates are recommended, temporarily disabling remote management features may help mitigate the risks associated with CVE-2021-45658.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/remedy
- agent/references
- agent/first-publish-date
- agent/description
- agent/last-modified-date
- agent/author
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/netgear
- canonical/netgear d7800
- canonical/netgear d7800 firmware
- canonical/netgear dm200
- canonical/netgear dm200 firmware
- canonical/netgear ex2700 firmware
- canonical/netgear ex6150v2 firmware
- canonical/netgear ex6100v2 firmware
- canonical/netgear ex6200v2 firmware
- canonical/netgear ex6250
- canonical/netgear ex6410
- canonical/netgear ex6420
- canonical/netgear ex6400v2 firmware
- canonical/netgear ex7300
- canonical/netgear ex7300v2
- canonical/netgear ex6400 firmware
- canonical/netgear ex6400v2
- canonical/netgear ex7320
- canonical/netgear ex7300v2 firmware
- canonical/netgear r7500v2 firmware
- canonical/netgear nighthawk r7500
- canonical/netgear r7800 firmware
- canonical/netgear r7800
- canonical/netgear r8900 firmware
- canonical/netgear r8900
- canonical/netgear r9000 firmware
- canonical/netgear rax120 firmware
- canonical/netgear rbk40
- canonical/netgear rbk40 firmware
- canonical/netgear rbk20 router firmware
- canonical/netgear rbk20 firmware
- canonical/netgear rbr20
- canonical/netgear rbs20 firmware
- canonical/netgear rbk50 firmware
- canonical/netgear rbk50
- canonical/netgear rbr50 firmware
- canonical/netgear rbs50 firmware
- canonical/netgear rbs50
- canonical/netgear rbs50y firmware
- canonical/netgear wn3000rpv2 firmware
- canonical/netgear wn3000rpv3 firmware
- canonical/netgear wn3000rpv3
- canonical/netgear wnr2000v5 firmware
- canonical/netgear xr500 firmware
- canonical/netgear xr700
- canonical/netgear xr700 firmware