{"id": "CVE-2021-45501", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.4, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.5, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2021-12-26T01:15:12.930", "references": [{"url": "https://kb.netgear.com/000064532/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-PSV-2021-0154", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://kb.netgear.com/000064532/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-PSV-2021-0154", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Certain NETGEAR devices are affected by authentication bypass. This affects AC2400 before 1.1.0.84, AC2600 before 1.1.0.84, D7000 before 1.0.1.82, R6020 before 1.0.0.52, R6080 before 1.0.0.52, R6120 before 1.0.0.80, R6220 before 1.1.0.110, R6230 before 1.1.0.110, R6260 before 1.1.0.84, R6330 before 1.1.0.84, R6350 before 1.1.0.84, R6700v2 before 1.1.0.84, R6800 before 1.1.0.84, R6850 before 1.1.0.84, R6900v2 before 1.1.0.84, R7200 before 1.1.0.84, R7350 before 1.1.0.84, R7400 before 1.1.0.84, and R7450 before 1.1.0.84."}, {"lang": "es", "value": "Determinados dispositivos NETGEAR est\u00e1n afectados por una omisi\u00f3n de autenticaci\u00f3n. Esto afecta a los dispositivos AC2400 versiones anteriores a 1.1.0.84, AC2600 versiones anteriores a 1.1.0.84, D7000 versiones anteriores a 1.0.1.82, R6020 versiones anteriores a 1.0.0.52, R6080 versiones anteriores a 1.0.0.52, R6120 versiones anteriores a 1.0.0.80, R6220 versiones anteriores a 1.1.0.110, R6230 versiones anteriores a 1.1.0.110, R6260 versiones anteriores a 1.1.0.84, R6330 versiones anteriores a 1.1.0.84. 1.0.84, R6350 versiones anteriores a 1.1.0.84, R6700v2 versiones anteriores a 1.1.0.84, R6800 versiones anteriores a 1.1.0.84, R6850 versiones anteriores a 1.1.0.84, R6900v2 versiones anteriores a 1.1.0.84, R7200 versiones anteriores a 1.1.0.84, R7350 versiones anteriores a 1.1.0.84, R7400 versiones anteriores a 1.1.0.84 y R7450 versiones anteriores a 1.1.0.84"}], "lastModified": "2024-11-21T06:32:21.403", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:ac2400_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C58AE2F0-D2B5-4781-BB17-7DB7754C7104", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:ac2400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6B25A18F-DD96-45FE-B098-71E60CB0FFFE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:ac2600_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A340F3DB-A810-4422-BD1E-EFBB7CE3114D", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:ac2600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2BFCD9A8-1846-48C4-9F14-3866E983FB74"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:d7000_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C37FAABD-5F8B-4185-815E-B49E51FF4FA9", "versionEndExcluding": "1.0.1.82"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:d7000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AF04B65B-9685-4595-9C71-0F77AD7109BE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6020_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "791E4414-852E-4DA1-AB96-0EBC6CC13F4A", "versionEndExcluding": "1.0.0.52"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5DDA7ABF-4C4B-4945-993A-F93BD8FCB55E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6080_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9EAD423-031A-400E-89CB-958D73BF4484", "versionEndExcluding": "1.0.0.52"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6080:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1CEB5C49-53CF-44AE-9A7D-E7E6201BFE62"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6120_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B41633A-89CB-4DC7-8CD8-AF1EE7E2CF60", "versionEndExcluding": "1.0.0.80"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6120:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D18D2CCD-424F-41D5-919B-E22B9FA68D36"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6220_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "894177B3-FEFC-450C-AB87-BAE985769719", "versionEndExcluding": "1.1.0.110"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6220:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B131B5C8-CB7F-433B-BA32-F05CE0E92A66"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6230_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EB2CDDD-4C4A-48CC-A6E6-03561C928F71", "versionEndExcluding": "1.1.0.110"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6230:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C91CADFA-59DB-4B6C-A914-848884F4A4BD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6260_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A194A033-7DAD-470E-B07B-050B4761C3C5", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6260:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3C395D49-57F9-4BC1-8619-57127355B86B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6330_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9652293-61FB-40DA-8C34-F347552D4CA6", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6330:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D621D26D-B144-424A-A9CB-19488399ACC1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6350_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "38890775-308B-49B6-A3B7-A7EE4C4CB696", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6350:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4B302909-29CF-4E53-9CCB-8664D3FCB03A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6700v2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C2D16A6-378A-4072-B743-09F966220C66", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6700v2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C9793286-86D2-43BF-B9B8-823C05BCAE4B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6800_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "234A281D-3FDF-45C1-82C1-78DD6B7B9330", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6800:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "09404083-B00B-4C1F-8085-BC242E625CA3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6850_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F7CC681-B1DB-469F-A62F-EA3E3A00C1F3", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6850:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "598B48C5-4706-4431-8C5A-DA496DD1052F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r6900v2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5FD1D1D-FD2C-496D-B114-D99394DB4D0C", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r6900v2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A9FC6398-60A5-4003-A294-C96AE6DBCED5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r7200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17BA87B8-783B-4B47-8225-220B9F9A602B", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r7200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FECB83F9-D417-4FD3-B293-87BC177E3AEB"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r7350_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F9794C1-A2DC-477F-B7DF-33A88C9309E9", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r7350:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AFD1A65C-F10F-4C52-8B6D-69992E512EB5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r7400_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0EA5BB6-0082-47E5-8DFC-10677A4AC817", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r7400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1F68AC3B-A31F-4AB0-89E9-BFFDE427AD3B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:netgear:r7450_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "477D15A9-BD8B-41D6-B4EA-C55F62AD173D", "versionEndExcluding": "1.1.0.84"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:netgear:r7450:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6DA5420D-DD64-4A9C-9B5F-784F0ED2B464"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}