Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-45511

🗓️ 26 Dec 2021 01:01:27Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 63 Views🌐 WEB

NETGEAR devices affected by authentication bypass CVE-2021-4551

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2021-45511
26 Dec 202101:15
attackerkb
BDU FSTEC		The vulnerabilities of NETGEAR Wi-Fi router microprogramming systems, such as AC2100, AC2400, AC2600, D7000, R6220, R6230, R6260, R6330, R6350, R6700v2, R6800, R6850, R6900v2, R7200, R7350, R7400, and R7450, are related to authentication mechanism flaws. These flaws allow attackers to circumvent security restrictions.
25 Jan 202200:00
bdu_fstec
Circl		CVE-2021-45511
24 Sep 202120:20
circl
CNNVD		Netgear NETGEAR 授权问题漏洞
26 Dec 202100:00
cnnvd
Cvelist		CVE-2021-45511
26 Dec 202101:01
cvelist
EUVD		EUVD-2021-32277
3 Oct 202520:07
euvd
Metasploit		Netgear PNPX_GetShareFolderList Authentication Bypass
25 Sep 202117:42
metasploit
NVD		CVE-2021-45511
26 Dec 202101:15
nvd
Prion		Authentication flaw
26 Dec 202101:15
prion
Positive Technologies		PT-2021-5887 · NetGear · Netgear R6260 +16
27 Aug 202100:00
ptsecurity
Rows per page
NVD
Node
netgearac2100_firmwareRange<1.2.0.88
AND
netgearac2100Match-
Node
netgearac2400_firmwareRange<1.2.0.88
AND
netgearac2400Match-
Node
netgearac2600_firmwareRange<1.2.0.88
AND
netgearac2600Match-
Node
netgeard7000_firmwareRange<1.0.1.80
AND
netgeard7000Match-
Node
netgearr6220_firmwareRange<1.1.0.110
AND
netgearr6220Match-
Node
netgearr6230_firmwareRange<1.1.0.110
AND
netgearr6230Match-
Node
netgearr6260_firmwareRange<1.1.0.84
AND
netgearr6260Match-
Node
netgearr6330_firmwareRange<1.1.0.84
AND
netgearr6330Match-
Node
netgearr6350_firmwareRange<1.1.0.84
AND
netgearr6350Match-
Node
netgearr6700v2_firmwareRange<1.2.0.88
AND
netgearr6700v2Match-
Node
netgearr6800_firmwareRange<1.2.0.88
AND
netgearr6800Match-
Node
netgearr6850_firmwareRange<1.1.0.84
AND
netgearr6850Match-
Node
netgearr6900v2_firmwareRange<1.2.0.88
AND
netgearr6900v2Match-
Node
netgearr7200_firmwareRange<1.2.0.88
AND
netgearr7200Match-
Node
netgearr7350_firmwareRange<1.2.0.88
AND
netgearr7350Match-
Node
netgearr7400_firmwareRange<1.2.0.88
AND
netgearr7400Match-
Node
netgearr7450_firmwareRange<1.2.0.88
AND
netgearr7450Match-
ParameterPositionPathDescriptionCWE
next_filequery paramsetup.cgiEndpoint used to trigger the PNPX_GetShareFolderList flow that leaks admin credentials
xquery paramsetup.cgiEndpoint used to trigger the PNPX_GetShareFolderList flow that leaks admin credentials
todoheadersetup.cgiEndpoint used to enable telnet by sending an authenticated request (authorization header) after login

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 06:32Current
9.5High risk
Vulners AI Score9.5
CVSS 3.16.8 - 9.8
CVSS 210
EPSS0.47997
netgearauthentication bypassvulnerabilitycve-2021-45511nvd
63