CVE-2021-45650

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R7000 before 1.0.11.110, R7900 before 1.0.4.30, R8000 before 1.0.4.62, RS400 before 1.5.1.80, R6400v2 before 1.0.4.102, R7000P before 1.3.2.126, R6700v3 before 1.0.4.102, and R6900P before 1.3.2.126.

Published: Dec 26, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-45650
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
netgear / r7000_firmware	-	1.0.11.110
netgear / r7900_firmware	-	1.0.4.30
netgear / r8000_firmware	-	1.0.4.62
netgear / rs400_firmware	-	1.5.1.80
netgear / r6400v2_firmware	-	1.0.4.102
netgear / r7000p_firmware	-	1.3.2.126
netgear / r6700v3_firmware	-	1.0.4.102
netgear / r6900p_firmware	-	1.3.2.126

https://kb.netgear.com/000064459/Security-Advisory-for-Sensitive-Information-Disclosure-on-Some-Routers-PSV-2020-0117

Vulnerability Database

289,697

CVE-2021-45650