Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-33514

🗓️ 21 May 2021 22:10:04Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 130 Views🌐 WEB

Certain NETGEAR devices are affected by command injection via the /sqfs/lib/libsal.so.0.0 library used by a CGI application

Related
Detection
Refs
Paths
Social
ReporterTitlePublishedViews
Family
Circl		CVE-2021-33514
22 May 202110:16
circl
CNNVD		Netgear NETGEAR 操作系统命令注入漏洞
21 May 202100:00
cnnvd
Check Point Advisories		NETGEAR Command Injection (CVE-2021-33514)
2 Aug 202100:00
checkpoint_advisories
Cvelist		CVE-2021-33514
21 May 202122:10
cvelist
NVD		CVE-2021-33514
21 May 202123:15
nvd
OpenVAS		NETGEAR Smart Cloud Switch Command Injection Vulnerability (PSV-2021-0071)
29 Jun 202100:00
openvas
Prion		Command injection
21 May 202123:15
prion
RedhatCVE		CVE-2021-33514
9 Jan 202608:52
redhatcve
seebug.org		NETGEAR GS110TPV3未认证命令注入漏洞(CVE-2021-33514)
15 Jul 202100:00
seebug
NVD
Node
netgeargc108p_firmwareRange<1.0.7.3
AND
netgeargc108pMatch-
Node
netgeargc108pp_firmwareRange<1.0.7.3
AND
netgeargc108ppMatch-
Node
netgeargs108t_firmwareRange<7.0.6.3
AND
netgeargs108tv3Match-
Node
netgeargs110tpp_firmwareRange<7.0.6.3
AND
netgeargs110tppMatchv1
Node
netgeargs110tp_firmwareRange<7.0.6.3
AND
netgeargs110tpMatchv3
Node
netgeargs110tup_firmwareRange<1.0.4.3
AND
netgeargs110tupMatchv1
Node
netgeargs710tup_firmwareRange<1.0.4.3
AND
netgeargs710tupMatchv1
Node
netgeargs716tp_firmwareRange<1.0.2.3
AND
netgeargs716tpMatch-
Node
netgeargs716tpp_firmwareRange<1.0.2.3
AND
netgeargs716tppMatch-
Node
netgeargs724tpp_firmwareRange<2.0.4.3
AND
netgeargs724tppMatchv1
Node
netgeargs724tp_firmwareRange<2.0.4.3
AND
netgeargs724tpMatchv2
Node
netgeargs728tpp_firmwareRange<6.0.6.3
AND
netgeargs728tppMatchv2
Node
netgeargs728tp_firmwareRange<6.0.6.3
AND
netgeargs728tpMatchv2
Node
netgeargs752tpp_firmwareRange<6.0.6.3
AND
netgeargs752tppMatchv1
Node
netgeargs752tp_firmwareRange<6.0.6.3
AND
netgeargs752tpMatchv2
Node
netgearms510txm_firmwareRange<1.0.2.3
AND
netgearms510txmMatch-
Node
netgearms510txup_firmwareRange<1.0.2.3
AND
netgearms510txupMatch-
ParameterPositionPathDescriptionCWE
tokenquery param/sqfs/home/web/cgi/setup.cgiPre-auth command injection via setup.cgi token parameter allowing arbitrary commands execution.CWE-78

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 06:08Current
9.7High risk
Vulners AI Score9.7
CVSS 3.18.8 - 9.8
CVSS 210
EPSS0.17229
CWE-78
netgearcommand injectionvulnerabilitycgi applicationcve-2021-33514nvdsecurity issue
130