Lucene search

[email protected]CVE-2021-41314

HistorySep 16, 2021 - 10:15 p.m.

CVE-2021-41314

2021-09-1622:15:00

CWE-74

[email protected]

web.nvd.nist.gov

cve-2021-41314

netgear

smart switches

web ui

password field injection

unauthenticated attacker

admin privileges

nvd

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

41.5%

JSON

Certain NETGEAR smart switches are affected by a \n injection in the web UI’s password field, which - due to several faulty aspects of the authentication scheme - allows the attacker to create (or overwrite) a file with specific content (e.g., the “2” string). This leads to admin session crafting and therefore gaining full web UI admin privileges by an unauthenticated attacker. This affects GC108P before 1.0.8.2, GC108PP before 1.0.8.2, GS108Tv3 before 7.0.7.2, GS110TPP before 7.0.7.2, GS110TPv3 before 7.0.7.2, GS110TUP before 1.0.5.3, GS308T before 1.0.3.2, GS310TP before 1.0.3.2, GS710TUP before 1.0.5.3, GS716TP before 1.0.4.2, GS716TPP before 1.0.4.2, GS724TPP before 2.0.6.3, GS724TPv2 before 2.0.6.3, GS728TPPv2 before 6.0.8.2, GS728TPv2 before 6.0.8.2, GS750E before 1.0.1.10, GS752TPP before 6.0.8.2, GS752TPv2 before 6.0.8.2, MS510TXM before 1.0.4.2, and MS510TXUP before 1.0.4.2.

CPENameOperatorVersion
netgear:gc108p_firmwarenetgear gc108p firmwarelt1.0.8.2
netgear:gc108pp_firmwarenetgear gc108pp firmwarelt1.0.8.2
netgear:gs108t_firmwarenetgear gs108t firmwarelt7.0.7.2
netgear:gs110tpp_firmwarenetgear gs110tpp firmwarelt7.0.7.2
netgear:gs110tp_firmwarenetgear gs110tp firmwarelt7.0.7.2
netgear:gs110tup_firmwarenetgear gs110tup firmwarelt1.0.5.3
netgear:gs308t_firmwarenetgear gs308t firmwarelt1.0.3.2
netgear:gs310tp_firmwarenetgear gs310tp firmwarelt1.0.3.2
netgear:gs710tup_firmwarenetgear gs710tup firmwarelt1.0.5.3
netgear:gs716tp_firmwarenetgear gs716tp firmwarelt1.0.4.2

CPE	Name	Operator	Version
netgear:gc108p_firmware	netgear gc108p firmware	lt	1.0.8.2
netgear:gc108pp_firmware	netgear gc108pp firmware	lt	1.0.8.2
netgear:gs108t_firmware	netgear gs108t firmware	lt	7.0.7.2
netgear:gs110tpp_firmware	netgear gs110tpp firmware	lt	7.0.7.2
netgear:gs110tp_firmware	netgear gs110tp firmware	lt	7.0.7.2
netgear:gs110tup_firmware	netgear gs110tup firmware	lt	1.0.5.3
netgear:gs308t_firmware	netgear gs308t firmware	lt	1.0.3.2
netgear:gs310tp_firmware	netgear gs310tp firmware	lt	1.0.3.2
netgear:gs710tup_firmware	netgear gs710tup firmware	lt	1.0.5.3
netgear:gs716tp_firmware	netgear gs716tp firmware	lt	1.0.4.2

Rows per page:

1-10 of 201

References

gynvael.coldwind.pl/?id=742

kb.netgear.com/000063978/Security-Advisory-for-Multiple-Vulnerabilities-on-Some-Smart-Switches-PSV-2021-0140-PSV-2021-0144-PSV-2021-0145

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

41.5%

JSON

Related for CVE-2021-41314

prion1 cnvd1