CVE-2021-38515

Certain NETGEAR devices are affected by denial of service. This affects R6400v2 before 1.0.4.98, R6700v3 before 1.0.4.98, R7900 before 1.0.3.18, and R8000 before 1.0.4.46.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.4 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
mitreCNA
7.4 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AC:L/AV:A/A:H/C:N/I:N/PR:N/S:C/UI:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 32%
VendorProductVersion
netgearr6400_firmware
𝑥
< 1.0.4.98
netgearr6700_firmware
𝑥
< 1.0.4.98
netgearr7900_firmware
𝑥
< 1.0.3.18
netgearr8000_firmware
𝑥
< 1.0.4.46
𝑥
= Vulnerable software versions
References
https://kb.netgear.com/000063768/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2019-0082
https://kb.netgear.com/000063768/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2019-0082