CVE-2021-45548

26.12.2021, 01:15

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.60, DM200 before 1.0.0.66, EX2700 before 1.0.1.56, EX6150v2 before 1.0.1.86, EX6200v2 before 1.0.1.86, EX6250 before 1.0.0.128, EX6400 before 1.0.2.144, EX6400v2 before 1.0.0.128, EX6410 before 1.0.0.128, EX6420 before 1.0.0.128, EX7300 before 1.0.2.144, EX7300v2 before 1.0.0.128, EX7320 before 1.0.0.128, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.5.26, R9000 before 1.0.5.2, RAX120 before 1.0.1.128, WN3000RPv2 before 1.0.0.78, WN3000RPv3 before 1.0.2.80, WNR2000v5 before 1.0.0.74, XR500 before 2.3.2.66, RBK20 before 2.7.3.22, RBR20 before 2.7.3.22, RBS20 before 2.7.3.22, RBK40 before 2.7.3.22, RBR40 before 2.7.3.22, and RBS40 before 2.7.3.22.

Command Injection

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.3 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
mitre	CNA	6.3 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AC:L/AV:L/A:L/C:H/I:H/PR:H/S:U/UI:N
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 56%

Vendor	Product	Version
netgear	d7800_firmware	𝑥 < 1.0.1.60
netgear	dm200_firmware	𝑥 < 1.0.0.66
netgear	ex2700_firmware	𝑥 < 1.0.1.56
netgear	ex6150v2_firmware	𝑥 < 1.0.1.86
netgear	ex6200v2_firmware	𝑥 < 1.0.1.86
netgear	ex6250_firmware	𝑥 < 1.0.0.128
netgear	ex6400_firmware	𝑥 < 1.0.2.144
netgear	ex6400v2_firmware	𝑥 < 1.0.0.128
netgear	ex6410_firmware	𝑥 < 1.0.0.128
netgear	ex6420_firmware	𝑥 < 1.0.0.128
netgear	ex7300_firmware	𝑥 < 1.0.2.144
netgear	ex7300v2_firmware	𝑥 < 1.0.0.128
netgear	ex7320_firmware	𝑥 < 1.0.0.128
netgear	r7500v2_firmware	𝑥 < 1.0.3.46
netgear	r7800_firmware	𝑥 < 1.0.2.74
netgear	r8900_firmware	𝑥 < 1.0.5.26
netgear	r9000_firmware	𝑥 < 1.0.5.2
netgear	rax120_firmware	𝑥 < 1.0.1.128
netgear	wn3000rpv2_firmware	𝑥 < 1.0.0.78
netgear	wn3000rpv3_firmware	𝑥 < 1.0.2.80
netgear	wnr2000v5_firmware	𝑥 < 1.0.0.74
netgear	xr500_firmware	𝑥 < 2.3.2.66
netgear	rbk20_firmware	𝑥 < 2.7.3.22
netgear	rbr20_firmware	𝑥 < 2.7.3.22
netgear	rbs20_firmware	𝑥 < 2.7.3.22
netgear	rbk40_firmware	𝑥 < 2.7.3.22
netgear	rbr40_firmware	𝑥 < 2.7.3.22
netgear	rbs40_firmware	𝑥 < 2.7.3.22

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
The software constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

References

https://kb.netgear.com/000064450/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Routers-Extenders-and-WiFi-Systems-PSV-2019-0207