CVE-2021-45510

CWE-287Improper Authentication3 documents3 sources
Severity
8.8HIGH
EPSS
0.1%
top 80.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netgear Xr1000 Firmware
Timeline
PublishedDec 26
Latest updateDec 27

Description

NETGEAR XR1000 devices before 1.0.0.58 are affected by authentication bypass.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:HExploitability: 2.8 | Impact: 4.7

Affected Packages1 packages

NVDnetgear/xr1000_firmware< 1.0.0.58

🔴Vulnerability Details

2
GHSA
GHSA-957m-5pq6-v3r5: NETGEAR XR1000 devices before 12021-12-27
CVEList
CVE-2021-45510: NETGEAR XR1000 devices before 12021-12-26
CVE-2021-45510 (HIGH CVSS 8.8) | NETGEAR XR1000 devices before 1.0.0 | cvebase.io