Lucene search

K
cvelistMitreCVELIST:CVE-2021-45594
HistoryDec 26, 2021 - 12:41 a.m.

CVE-2021-45594

2021-12-2600:41:20
mitre
www.cve.org
6
netgear
authenticated user
command injection
rbs50y
rbr20
rbr40
rbr50
rbs20
rbs40
rbs50
rbk20
rbk40
rbk50
cve-2021-45594

CVSS3

8.4

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0

Percentile

12.6%

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBS50Y before 2.7.3.22, RBR20 before 2.7.3.22, RBR40 before 2.7.3.22, RBR50 before 2.7.3.22, RBS20 before 2.7.3.22, RBS40 before 2.7.3.22, RBS50 before 2.7.3.22, RBK20 before 2.7.3.22, RBK40 before 2.7.3.22, and RBK50 before 2.7.3.22.

CVSS3

8.4

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0

Percentile

12.6%

Related for CVELIST:CVE-2021-45594