CVE-2021-45645

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects RBS50Y before 2.7.0.122, SRK60 before 2.7.0.122, SRR60 before 2.7.0.122, SRS60 before 2.7.0.122, SXK30 before 3.2.33.108, SXR30 before 3.2.33.108, SXS30 before 3.2.33.108, and SRC60 before 2.7.0.122.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.2 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
mitreCNA
8.2 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AC:L/AV:A/A:N/C:H/I:L/PR:N/S:C/UI:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
netgearrbs50y_firmware
𝑥
< 2.7.0.122
netgearsrk60_firmware
𝑥
< 2.7.0.122
netgearsrr60_firmware
𝑥
< 2.7.0.122
netgearsrs60_firmware
𝑥
< 2.7.0.122
netgearsxk30_firmware
𝑥
< 3.2.33.108
netgearsxr30_firmware
𝑥
< 3.2.33.108
netgearsxs30_firmware
𝑥
< 3.2.33.108
netgearsrc60_firmware
𝑥
< 2.7.0.122
𝑥
= Vulnerable software versions
References
https://kb.netgear.com/000064530/Security-Advisory-for-Security-Misconfiguration-on-Some-WiFi-Systems-PSV-2021-0127
https://kb.netgear.com/000064530/Security-Advisory-for-Security-Misconfiguration-on-Some-WiFi-Systems-PSV-2021-0127