CVE-2021-45654

CWE-200Information Exposure3 documents3 sources
Severity
7.5HIGH
EPSS
0.4%
top 40.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netgear Xr1000 Firmware
Timeline
PublishedDec 26
Latest updateDec 27

Description

NETGEAR XR1000 devices before 1.0.0.58 are affected by disclosure of sensitive information.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 2.8 | Impact: 6.0

Affected Packages1 packages

NVDnetgear/xr1000_firmware< 1.0.0.58

Patches

Patch: kb.netgear.comPatch: kb.netgear.com

🔴Vulnerability Details

2
GHSA
GHSA-r66h-wx88-fm8g: NETGEAR XR1000 devices before 12021-12-27
CVEList
CVE-2021-45654: NETGEAR XR1000 devices before 12021-12-26
CVE-2021-45654 (HIGH CVSS 7.5) | NETGEAR XR1000 devices before 1.0.0 | cvebase.io