CVE-2021-45676: XSS
First published: Sun Dec 26 2021(Updated: )
Certain NETGEAR devices are affected by stored XSS. This affects RAX200 before 1.0.5.126, RAX20 before 1.0.2.82, RAX80 before 1.0.5.126, RAX15 before 1.0.2.82, and RAX75 before 1.0.5.126.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear Rax200 Firmware | <1.0.5.126 | |
| NETGEAR RAX200 | ||
| Netgear Rax20 Firmware | <1.0.2.82 | |
| Netgear Rax20 | ||
| Netgear Rax80 Firmware | <1.0.5.126 | |
| Netgear Rax80 | ||
| Netgear Rax15 Firmware | <1.0.2.82 | |
| Netgear Rax15 | ||
| Netgear Rax75 Firmware | <1.0.5.126 | |
| Netgear Rax75 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-45676?
CVE-2021-45676 is a vulnerability that affects certain NETGEAR devices and allows for stored cross-site scripting (XSS) attacks.
Which NETGEAR devices are affected by CVE-2021-45676?
NETGEAR RAX200, RAX20, RAX80, RAX15, and RAX75 devices are affected by CVE-2021-45676.
What is the severity of CVE-2021-45676?
The severity of CVE-2021-45676 is rated as medium with a CVSS score of 4.8.
How can I fix CVE-2021-45676?
To fix CVE-2021-45676, it is recommended to update the firmware of the affected NETGEAR devices to the latest available version.
Where can I find more information about CVE-2021-45676?
You can find more information about CVE-2021-45676 in the NETGEAR security advisory: https://kb.netgear.com/000064462/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-PSV-2020-0161
- collector/nvd-index
- vendor/netgear
- canonical/netgear rax200 firmware
- canonical/netgear rax200
- canonical/netgear rax20 firmware
- canonical/netgear rax20
- canonical/netgear rax80 firmware
- canonical/netgear rax80
- canonical/netgear rax15 firmware
- canonical/netgear rax15
- canonical/netgear rax75 firmware
- canonical/netgear rax75