CVE-2021-45516

EUVD-2021-32282
Certain NETGEAR devices are affected by denial of service. This affects R6400 before 1.0.1.70, R7000 before 1.0.11.126, R6900P before 1.3.3.140, R7000P before 1.3.3.140, R8000 before 1.0.4.74, RBK852 before 3.2.10.11, RBR850 before 3.2.10.11, and RBS850 before 3.2.10.11.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.9 MEDIUM
ADJACENT_NETWORK
LOW
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:H
mitreCNA
6.9 MEDIUM
ADJACENT_NETWORK
LOW
HIGH
CVSS:3.1/AC:L/AV:A/A:H/C:N/I:L/PR:H/S:C/UI:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
Affected Products (NVD)
VendorProductVersion
netgearr6400_firmware
𝑥
< 1.0.1.70
netgearr7000_firmware
𝑥
< 1.0.11.126
netgearr6900p_firmware
𝑥
< 1.3.3.140
netgearr7000p_firmware
𝑥
< 1.3.3.140
netgearr8000_firmware
𝑥
< 1.0.4.74
netgearrbk852_firmware
𝑥
< 3.2.10.11
netgearrbr850_firmware
𝑥
< 3.2.10.11
netgearrbs850_firmware
𝑥
< 3.2.10.11
𝑥
= Vulnerable software versions
References
https://kb.netgear.com/000064060/Security-Advisory-for-Denial-of-Service-on-Some-Routers-and-WiFi-Systems-PSV-2019-0115
https://kb.netgear.com/000064060/Security-Advisory-for-Denial-of-Service-on-Some-Routers-and-WiFi-Systems-PSV-2019-0115