RouterCVE

CVE-2021-45676

MEDIUM
4.3CVSS v3
3.5CVSS v2
0.22% EPSS (exploit probability)
CWE-79CWE

Description

Certain NETGEAR devices are affected by stored XSS. This affects RAX200 before 1.0.5.126, RAX20 before 1.0.2.82, RAX80 before 1.0.5.126, RAX15 before 1.0.2.82, and RAX75 before 1.0.5.126.

CVSS v3 vector: CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Affected routers (2)

VendorModelMatched viaAffected versionsFixed inPatch Status
Netgear Netgear Nighthawk RAX200 versionEndExcluding=1.0.5.126 1.0.5.126 Patched
Netgear Netgear Nighthawk RAX80 versionEndExcluding=1.0.5.126 1.0.5.126 Patched

External references