CVE-2021-45614

Published Dec 26, 2021
Last updated 3 years ago
CVSS critical 9.8
Overview

Description: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7000v2 before 1.0.0.74, LAX20 before 1.1.6.28, MK62 before 1.0.6.116, MR60 before 1.0.6.116, MS60 before 1.0.6.116, RAX15 before 1.0.3.96, RAX20 before 1.0.3.96, RAX200 before 1.0.4.120, RAX45 before 1.0.3.96, RAX50 before 1.0.3.96, RAX43 before 1.0.3.96, RAX40v2 before 1.0.3.96, RAX35v2 before 1.0.3.96, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, and XR1000 before 1.0.0.58.
Source: cve@mitre.org
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL
CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses

nvd@nist.gov: CWE-77
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:d7000v2_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2D1C234-22F1-4837-9D04-059170A97072",
            "versionEndExcluding": "1.0.0.74"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:d7000v2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6DC6BD34-1A2C-4247-A20C-0B44C0F56E0F"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:lax20_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48709EA4-81F3-4CF1-B9A8-5379309914B0",
            "versionEndExcluding": "1.1.6.28"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:lax20:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "491CEB8D-22F3-4F86-96F0-03C5C58BA295"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:mk62_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE40C2D0-0863-4E0F-B3E7-6FD043B46467",
            "versionEndExcluding": "1.0.6.116"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:mk62:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "69A79475-37BE-47BD-A629-DCEF22500B0B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:mr60_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA438541-75AE-4D6B-AB56-02760D08D465",
            "versionEndExcluding": "1.0.6.116"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:mr60:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "65BB3ECD-2F0B-4625-A1DB-F6CEFC46E277"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:ms60_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2234C485-F411-48CC-9A0B-AA49B6961E38",
            "versionEndExcluding": "1.0.6.116"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:ms60:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F003F064-591C-4D7C-9EC4-D0E553BC6683"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax15_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2268D5EF-E7FA-4112-A468-507417E18FFF",
            "versionEndExcluding": "1.0.3.96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax15:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B624B4D3-BCF4-4F95-B401-A88BEC3145A5"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax20_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31289572-2197-4A38-8353-CA4AAD491160",
            "versionEndExcluding": "1.0.3.96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax20:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7038703C-C79D-4DD4-8B16-E1A5FC6694C0"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax200_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6334DE4D-E78B-4582-9C6F-6123DA5192C7",
            "versionEndExcluding": "1.0.4.120"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "58EB0F2F-FB5C-47D9-9AE6-087AE517B3F9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax45_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0706367A-3F60-4564-8689-E0A46DDC31C2",
            "versionEndExcluding": "1.0.3.96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax45:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4B08BD69-CDCC-4CEB-B887-4E47D2B45D26"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax50_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "679C4EC5-D17E-469B-A28F-BF5E231CED3D",
            "versionEndExcluding": "1.0.3.96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax50:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C430976E-24C0-4EA7-BF54-F9C188AB9C01"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax43_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AC89EAA-344C-438E-A5A5-2C34CF699743",
            "versionEndExcluding": "1.0.3.96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax43:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "178BB386-F66C-4CE8-9283-37D22B304691"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax40v2_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FF0E5B9-8D2D-4A3F-881E-2E3122B3577C",
            "versionEndExcluding": "1.0.3.96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax40v2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3CEAD12D-6D90-4CFB-9E59-2CEBD400C567"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax35v2_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "841D857C-3387-43E0-A3AF-0E81CBEE3E40",
            "versionEndExcluding": "1.0.3.96"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax35v2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9358B2F2-D24E-434D-AEE5-6CE093598793"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax75_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDF9F3BA-4239-4F4D-A65E-A6752A5420F6",
            "versionEndExcluding": "1.0.4.120"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax75:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1BAA74D7-36A1-4494-96A2-BD0D2D6BF22F"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rax80_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "334BB384-5C29-4D24-9F82-B8EE8D0CA8BF",
            "versionEndExcluding": "1.0.4.120"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rax80:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "06B5A85C-3588-4263-B9AD-4E56D3F6CB16"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rbk752_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D8D90FF3-F5CE-43DF-ACF7-C64DBDCCA185",
            "versionEndExcluding": "3.2.17.12"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rbk752:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A45832BD-114D-42F1-B9F1-7532496D30A6"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rbr750_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6AE1767-9D9A-4E9E-B088-6727FACFDE5C",
            "versionEndExcluding": "3.2.17.12"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rbr750:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C13F5C69-FA9B-472A-9036-0C2967BDCDE9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rbs750_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F614A1AB-F0C0-45D7-8D91-ECA3C1AA9165",
            "versionEndExcluding": "3.2.17.12"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rbs750:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B529194C-C440-4BC3-850F-0613FC548F86"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rbk852_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "845C1FCC-F54B-452A-B121-1CD1A7867027",
            "versionEndExcluding": "3.2.17.12"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rbk852:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "14F257FE-31CE-4F74-829D-29407D74ADF7"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rbr850_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01E0EF50-145F-407A-8915-4EFFCD833505",
            "versionEndExcluding": "3.2.17.12"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rbr850:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D92E4C8E-222A-476C-8273-F7171FC61F0B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:rbs850_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DC5A075-0619-409C-B057-41015B8C54B3",
            "versionEndExcluding": "3.2.17.12"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:rbs850:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "221CA950-E984-44CD-9E1B-3AADE3CEBE52"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:xr1000_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F615F516-29EF-4C15-9E18-C5D4F6291A38",
            "versionEndExcluding": "1.0.0.58"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:xr1000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4FD4ED11-4130-47DA-8A9D-55B8F6E3E213"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
