Lucene search

MitreCVELIST:CVE-2021-45514

HistoryDec 26, 2021 - 1:00 a.m.

CVE-2021-45514

2021-12-2601:00:52

mitre

www.cve.org

netgear xr1000

command injection

unauthenticated attacker

cve-2021-45514

CVSS3

9.6

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

9.9

Confidence

High

EPSS

0.001

Percentile

34.3%

JSON

NETGEAR XR1000 devices before 1.0.0.58 are affected by command injection by an unauthenticated attacker.

References

kb.netgear.com/000064154/Security-Advisory-for-Command-Injection-on-XR1000-PSV-2021-0018

CVSS3

9.6

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

9.9

Confidence

High

EPSS

0.001

Percentile

34.3%

JSON

Related for CVELIST:CVE-2021-45514