Netgear Rbk853 Firmware vulnerabilities

31 known vulnerabilities affecting netgear/rbk853_firmware.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL7HIGH22MEDIUM2

Vulnerabilities

Page 1 of 2

CVE-2021-29076CRITICALCVSS 9.6fixed in 3.2.17.122021-03-23

CVE-2021-29076 [CRITICAL] CWE-77 CVE-2021-29076: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.

nvd

CVE-2021-29071CRITICALCVSS 9.0fixed in 3.2.17.122021-03-23

CVE-2021-29071 [CRITICAL] CWE-77 CVE-2021-29071: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, RBR752 before 3.2.17.12, RBR753 before 3.2.17.12, RBR753S before 3.2.17.12, RBR754 before 3.2.17.12, RBR750 before 3.2.17.12, an

nvd

CVE-2021-29066CRITICALCVSS 9.6fixed in 3.2.17.122021-03-23

CVE-2021-29066 [CRITICAL] CVE-2021-29066: Certain NETGEAR devices are affected by authentication bypass. This affects RBK852 before 3.2.17.12, Certain NETGEAR devices are affected by authentication bypass. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.

nvd

CVE-2021-29067CRITICALCVSS 9.6fixed in 3.2.17.122021-03-23

nvd

CVE-2021-29079CRITICALCVSS 9.6fixed in 3.2.17.122021-03-23

CVE-2021-29079 [CRITICAL] CWE-77 CVE-2021-29079: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.

nvd

CVE-2021-29077CRITICALCVSS 9.6fixed in 3.2.17.122021-03-23

CVE-2021-29077 [CRITICAL] CWE-77 CVE-2021-29077: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBW30 before 2.6.2.2, RBS40V before 2.6.2.4, RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, RBK752 before 3.2.17.12, RBK753 before 3.2.17.12, RBK753S before 3.2.17.12, R

nvd

CVE-2021-29078CRITICALCVSS 9.6fixed in 3.2.17.122021-03-23

nvd

CVE-2021-29074HIGHCVSS 8.4fixed in 3.2.17.122021-03-23

nvd

CVE-2021-29081HIGHCVSS 8.4fixed in 3.2.17.122021-03-23

nvd

CVE-2021-29068HIGHCVSS 8.8fixed in 3.2.16.62021-03-23

CVE-2021-29068 [CRITICAL] CWE-120 CVE-2021-29068: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R67 Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R6700v3 before 1.0.4.98, R6400v2 before 1.0.4.98, R7000 before 1.0.11.106, R6900P before 1.3.2.124, R7000P before 1.3.2.124, R7900 before 1.0.4.26, R7850 before 1.0.5.60, R8000 before 1.0.4.58, RS400 before 1.5.0.48, R6400 before 1.0.1.62, R6700 before

nvd

CVE-2021-29070HIGHCVSS 8.4fixed in 3.2.17.122021-03-23

CVE-2021-29070 [HIGH] CWE-77 CVE-2021-29070: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.

nvd

CVE-2021-29082HIGHCVSS 8.8fixed in 3.2.15.252021-03-23

nvd

CVE-2021-29075HIGHCVSS 8.4fixed in 3.2.17.122021-03-23

nvd

CVE-2021-29080HIGHCVSS 8.1fixed in 3.2.10.112021-03-23

CVE-2021-29080 [HIGH] CWE-640 CVE-2021-29080: Certain NETGEAR devices are affected by password reset by an unauthenticated attacker. This affects Certain NETGEAR devices are affected by password reset by an unauthenticated attacker. This affects RBK852 before 3.2.10.11, RBK853 before 3.2.10.11, RBR854 before 3.2.10.11, RBR850 before 3.2.10.11, RBS850 before 3.2.10.11, CBR40 before 2.5.0.10, R7000 before 1.0.11.116, R6900P before 1.3.2.126, R7900 before 1.0.4.38, R7960P before 1.4.1.66, R8000 bef

nvd

CVE-2021-29072HIGHCVSS 8.4fixed in 3.2.17.122021-03-23

CVE-2021-29072 [HIGH] CWE-77 CVE-2021-29072: Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, and RBS850 before 3.2.17.12.

nvd

CVE-2020-14428HIGHCVSS 8.8fixed in 3.2.15.252020-06-18

CVE-2020-14428 [HIGH] CVE-2020-14428: Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RBK75 Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK842 before 3.2.15.25, RBR840 before 3.2.15.25, RBS840 before 3.2.15.25, RBK852 before 3.2.15.25, RBK853 before 3.2.15.25, RBR850 before 3

nvd

CVE-2020-14442HIGHCVSS 8.8fixed in 3.2.15.252020-06-18

CVE-2020-14442 [HIGH] CWE-77 CVE-2020-14442: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK842 before 3.2.15.25, RBR840 before 3.2.15.25, RBS840 before 3.2.15.25, RBK852 before 3.2.15.25, RBK853 before 3.2.15.25,

nvd

CVE-2020-14439HIGHCVSS 8.8fixed in 3.2.15.252020-06-18

CVE-2020-14439 [HIGH] CWE-77 CVE-2020-14439: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK842 before 3.2.15.25, RBR840 before 3.2.15.25, RBS840 before 3.2.15.25, RBK852 before 3.2.15.25, RBK853 before 3.2.15.25,

nvd

CVE-2020-14437HIGHCVSS 8.8fixed in 3.2.15.252020-06-18

CVE-2020-14437 [HIGH] CWE-77 CVE-2020-14437: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK842 before 3.2.15.25, RBR840 before 3.2.15.25, RBS840 before 3.2.15.25, RBK852 before 3.2.15.25, RBK853 before 3.2.15.25,

nvd

CVE-2020-14438HIGHCVSS 8.8fixed in 3.2.15.252020-06-18

CVE-2020-14438 [HIGH] CWE-77 CVE-2020-14438: Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affec Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK842 before 3.2.15.25, RBR840 before 3.2.15.25, RBS840 before 3.2.15.25, RBK852 before 3.2.15.25, RBK853 before 3.2.15.25,

nvd

1 / 2Next →