RouterCVE

CVE-2021-45507

CRITICAL
9.6CVSS v3
7.5CVSS v2
1.37% EPSS (exploit probability)
CWE

Description

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBW30 before 2.6.2.2, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, and RBS40V before 2.6.2.8.

CVSS v3 vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected routers (2)

VendorModelMatched viaAffected versionsFixed inPatch?
Netgear Netgear Orbi RBK852 No
Netgear Netgear Orbi RBR850 No

External references