CVE-2021-45662 — Cross-site Scripting in Netgear R7000 Firmware

Severity

5.4MEDIUMNVD

CNA6.1

EPSS

0.3%

top 46.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedDec 26

Latest updateDec 27

Description

NETGEAR R7000 devices before 1.0.9.88 are affected by stored XSS.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

GHSA

GHSA-6xqp-ghrr-4p4f: NETGEAR R7000 devices before 1↗2021-12-27

▶

CVEList

CVE-2021-45662: NETGEAR R7000 devices before 1↗2021-12-26

▶