CVE-2021-38528

🗓️ 11 Aug 2021 00:00:51Reported by mitreType

cve

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 68 Views

Certain NETGEAR devices vulnerable to unauthenticated command injection

Reporter	Title	Published	Views	Family All 7
CNNVD	Netgear NETGEAR 命令注入漏洞	10 Aug 202100:00	–	cnnvd
Cvelist	CVE-2021-38528	11 Aug 202100:00	–	cvelist
EUVD	EUVD-2021-24978	7 Oct 202500:30	–	euvd
NVD	CVE-2021-38528	11 Aug 202100:16	–	nvd
OSV	CVE-2021-38528	11 Aug 202100:16	–	osv
Prion	Command injection	11 Aug 202100:16	–	prion
RedhatCVE	CVE-2021-38528	22 May 202520:09	–	redhatcve

NVD

Node

netgear d8500_firmwareRange<1.0.3.58

AND

netgear d8500Match-

Node

netgear r6900p_firmwareRange<1.3.2.132

AND

netgear r6900pMatch-

Node

netgear r7000p_firmwareRange<1.3.2.132

AND

netgear r7000pMatch-

Node

netgear r7100lg_firmwareRange<1.0.0.64

AND

netgear r7100lgMatch-

Node

netgear wndr3400_firmwareRange<1.0.1.38

AND

netgear wndr3400Matchv3

Node

netgear xr300_firmwareRange<1.0.3.56

AND

netgear xr300Match-

Source	Link
kb	www.kb.netgear.com/000063781/Security-Advisory-for-Pre-Authentication-Command-Injection-on-Some-Gateways-and-Routers-PSV-2020-0297

21 Nov 2024 06:17Current

9.7High risk

Vulners AI Score9.7

CVSS 3.19.6 - 9.8

CVSS 210

EPSS0.03689

netgear command injection cve-2021-38528 vulnerability unauthenticated access nvd xr300 r7100lg r7000p r6900p d8500 wndr3400v3