MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. (Affected Chipsets MT7603E, MT7613, MT7615, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 2.0.2; Missing authorization).
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
History
21 Nov 2024, 06:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://corp.mediatek.com/product-security-bulletin/January-2022 - Vendor Advisory | |
References | () https://kb.netgear.com/000064368/Security-Advisory-for-WiFi-WPS-and-IEEE-1905-Vulnerabilities-on-Multiple-Products-PSV-2021-0298-PSV-2021-0300 - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 8.2 |
Information
Published : 2021-12-26 00:15
Updated : 2024-11-21 06:15
NVD link : CVE-2021-37572
Mitre link : CVE-2021-37572
CVE.ORG link : CVE-2021-37572
JSON object : View
Products Affected
mediatek
- mt7628
- mt7603e
- mt7622
- mt7629
- mt7915_firmware
- mt7629_firmware
- mt7613
- mt7915
- mt7603e_firmware
- mt7613_firmware
- mt7622_firmware
- mt7615
- mt7628_firmware
- mt7615_firmware
CWE
CWE-862
Missing Authorization