CVE-2021-32122

Certain NETGEAR devices are affected by CSRF. This affects EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, and EX6130 before 1.0.0.44.

Published: Aug 11, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-32122
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8
AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 5.4
AV:A/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-352

Affected Software
References

Software	From	Fixed in
netgear / ex3700_firmware	-	1.0.0.90
netgear / ex3800_firmware	-	1.0.0.90
netgear / ex6120_firmware	-	1.0.0.64
netgear / ex6130_firmware	-	1.0.0.44

https://kb.netgear.com/000063883/Security-Advisory-for-Cross-Site-Request-Forgery-on-Some-Extenders-PSV-2021-0102

Vulnerability Database

289,697

CVE-2021-32122