CVE-2021-45508

CRITICAL

9.6CVSS v3

7.5CVSS v2

0.40% EPSS (exploit probability)

—CWE

Description

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, and RBR850 before 3.2.17.12.

CVSS v3 vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected routers (2)

Vendor	Model	Matched via	Affected versions	Fixed in	Patch?
Netgear	Netgear Orbi RBK852	`—`	—	—	No
Netgear	Netgear Orbi RBR850	`—`	—	—	No

External references

NIST NVD
MITRE CVE