CVE-2021-45655

CWE-74CWE-94Code Injection3 documents3 sources
Severity
6.8MEDIUM
EPSS
0.1%
top 72.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netgear R6400 Firmware
Timeline
PublishedDec 26
Latest updateDec 27

Description

NETGEAR R6400 devices before 1.0.1.70 are affected by server-side injection.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:HExploitability: 1.7 | Impact: 4.7

Affected Packages1 packages

NVDnetgear/r6400_firmware< 1.0.1.70

Patches

Patch: kb.netgear.comPatch: kb.netgear.com

🔴Vulnerability Details

2
GHSA
GHSA-r8hf-cx4m-8hgj: NETGEAR R6400 devices before 12021-12-27
CVEList
CVE-2021-45655: NETGEAR R6400 devices before 12021-12-26
CVE-2021-45655 (MEDIUM CVSS 6.8) | NETGEAR R6400 devices before 1.0.1. | cvebase.io