CVE-2021-45499 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.2 HIGH	NETWORK	HIGH	LOW	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
mitre	CNA	8.2 HIGH	NETWORK	HIGH	LOW	CVSS:3.1/AC:H/AV:N/A:N/C:H/I:H/PR:L/S:C/UI:N
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 65%

Vendor	Product	Version
netgear	r6900p_firmware	𝑥 < 1.3.3.140
netgear	r7000p_firmware	𝑥 < 1.3.3.140
netgear	r7900p_firmware	𝑥 < 1.4.2.84
netgear	r7960p_firmware	𝑥 < 1.4.2.84
netgear	r8000p_firmware	𝑥 < 1.4.2.84
netgear	rax75_firmware	𝑥 < 1.0.3.106
netgear	rax80_firmware	𝑥 < 1.0.3.106

𝑥

= Vulnerable software versions

References

https://kb.netgear.com/000064445/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-PSV-2019-0027

https://kb.netgear.com/000064445/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-PSV-2019-0027