Cyber Resilience

CVE-2021-45511

Medium

Published: 26 December 2021

Published
26 December 2021
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 6.8 CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.4800 97.8th percentile
Risk Priority 42 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2021-45511 is a medium-severity an unspecified weakness vulnerability in Netgear Ac2100 Firmware. Its CVSS base score is 6.8 (Medium).

Operationally, ranked in the top 2.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Certain NETGEAR devices are affected by authentication bypass. This affects AC2100 before 2021-08-27, AC2400 before 2021-08-27, AC2600 before 2021-08-27, D7000 before 2021-08-27, R6220 before 2021-08-27, R6230 before 2021-08-27, R6260 before 2021-08-27, R6330 before 2021-08-27, R6350 before 2021-08-27, R6700v2 before 2021-08-27,…

more

R6800 before 2021-08-27, R6850 before 2021-08-27, R6900v2 before 2021-08-27, R7200 before 2021-08-27, R7350 before 2021-08-27, R7400 before 2021-08-27, and R7450 before 2021-08-27.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

netgear
ac2100 firmware
≤ 1.2.0.88
netgear
ac2400 firmware
≤ 1.2.0.88
netgear
ac2600 firmware
≤ 1.2.0.88
netgear
d7000 firmware
≤ 1.0.1.80
netgear
r6220 firmware
≤ 1.1.0.110
netgear
r6230 firmware
≤ 1.1.0.110
netgear
r6260 firmware
≤ 1.1.0.84
netgear
r6330 firmware
≤ 1.1.0.84
netgear
r6350 firmware
≤ 1.1.0.84
netgear
r6700v2 firmware
≤ 1.2.0.88
+7 more product configuration(s) — see NVD for full list

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References