CVE-2021-38531

Published Aug 11, 2021

Last updated 3 years ago

CVSS high 7.2

Overview

Description: Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6200 before 1.1.00.40, D7000 before 1.0.1.78, R6020 before 1.0.0.42, R6080 before 1.0.0.42, R6120 before 1.0.0.66, R6260 before 1.1.0.78, R6700v2 before 1.2.0.76, R6800 before 1.2.0.76, R6900v2 before 1.2.0.76, R7450 before 1.2.0.76, AC2100 before 1.2.0.76, and AC2400 before 1.2.0.76.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.2
Impact score: 5.9
Exploitability score: 1.2
Vector string: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:d6200_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59BF957E-F3B6-41A5-A36C-8C0CF3B417D0",
            "versionEndExcluding": "1.1.00.40"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:d6200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "00E6A1B7-4732-4259-9B71-10FF0B56A16B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:d7000_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C539CF50-2AC3-45F9-8F69-FA2F50FAD92D",
            "versionEndExcluding": "1.0.1.78"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:d7000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AF04B65B-9685-4595-9C71-0F77AD7109BE"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6020_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DAD3FA3E-6629-4C40-B8DB-8CDF824A9E0D",
            "versionEndExcluding": "1.0.0.42"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6020:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5DDA7ABF-4C4B-4945-993A-F93BD8FCB55E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6080_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CCD6658-5418-4FF3-B471-A482A9499487",
            "versionEndExcluding": "1.0.0.42"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6080:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1CEB5C49-53CF-44AE-9A7D-E7E6201BFE62"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6120_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC964EED-3452-4D6F-8603-0A28988282FA",
            "versionEndExcluding": "1.0.0.66"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6120:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D18D2CCD-424F-41D5-919B-E22B9FA68D36"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6260_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33824B9B-1224-484A-AFF4-953573F299C6",
            "versionEndExcluding": "1.1.0.78"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6260:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3C395D49-57F9-4BC1-8619-57127355B86B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6700_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0FCF958-2F6A-4B79-B307-2FE23B7CE8FC",
            "versionEndExcluding": "1.2.0.76"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6700:v2:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9F9706E6-CA53-43E4-91B0-D52655C86860"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6800_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA434604-4916-4830-A96B-CEC0C8E5A1A0",
            "versionEndExcluding": "1.2.0.76"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "09404083-B00B-4C1F-8085-BC242E625CA3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r6900_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E9457F1-F5E8-43CA-8697-3849E140B0CC",
            "versionEndExcluding": "1.2.0.76"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r6900:v2:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2E8EB69B-6619-47B6-A073-D0B840D4EB0B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:r7450_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33043216-4563-4195-88D7-93446302ECD1",
            "versionEndExcluding": "1.2.0.76"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:r7450:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6DA5420D-DD64-4A9C-9B5F-784F0ED2B464"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:ac2100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A80B06A1-81B5-4C33-89F6-EC3F6E3068B5"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:ac2100_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AB0B236-6BC6-4E99-8792-6B01BD591D3A",
            "versionEndExcluding": "1.2.0.76"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:ac2400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6B25A18F-DD96-45FE-B098-71E60CB0FFFE"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:ac2400_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B01C772-D1D4-41F1-A33D-72A6A672502A",
            "versionEndExcluding": "1.2.0.76"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References