Vulnerability CVE-2021-45511 - CERT Civis.Net

Vulnerability Name:

CVE-2021-45511 (CCN-208395)

Assigned:

2021-08-27

Published:

2021-08-27

Updated:

2022-07-12

Summary:

Certain NETGEAR devices are affected by authentication bypass. This affects AC2100 before 2021-08-27, AC2400 before 2021-08-27, AC2600 before 2021-08-27, D7000 before 2021-08-27, R6220 before 2021-08-27, R6230 before 2021-08-27, R6260 before 2021-08-27, R6330 before 2021-08-27, R6350 before 2021-08-27, R6700v2 before 2021-08-27, R6800 before 2021-08-27, R6850 before 2021-08-27, R6900v2 before 2021-08-27, R7200 before 2021-08-27, R7350 before 2021-08-27, R7400 before 2021-08-27, and R7450 before 2021-08-27.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
9.1 Critical (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

6.8 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)
6.3 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Adjacent Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.7 High (CCN CVSS v2 Vector: AV:A/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2021-45511

Source: XF
Type: UNKNOWN
netgear-psv20210133-sec-bypass(208395)

Source: MISC
Type: Patch, Vendor Advisory
https://kb.netgear.com/000063961/Security-Advisory-for-Authentication-Bypass-Vulnerability-on-the-D7000-and-Some-Routers-PSV-2021-0133

Source: CCN
Type: NETGEAR Security Advisory: PSV-2021-0133
Security Advisory for Authentication Bypass Vulnerability on the D7000 and Some Routers

Source: CCN
Type: Rapid7 Vulnerability and Exploit Database [09-06-2021]
Netgear PNPX_GetShareFolderList Authentication Bypass

Vulnerable Configuration:

Configuration 1:

cpe:/o:netgear:ac2100_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:ac2100:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:netgear:ac2400_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:ac2400:-:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:netgear:ac2600_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:ac2600:-:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:netgear:d7000_firmware:*:*:*:*:*:*:*:* (Version < 1.0.1.80)

AND

cpe:/h:netgear:d7000:-:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:netgear:r6220_firmware:*:*:*:*:*:*:*:* (Version < 1.1.0.110)

AND

cpe:/h:netgear:r6220:-:*:*:*:*:*:*:*

Configuration 6:

cpe:/o:netgear:r6230_firmware:*:*:*:*:*:*:*:* (Version < 1.1.0.110)

AND

cpe:/h:netgear:r6230:-:*:*:*:*:*:*:*

Configuration 7:

cpe:/o:netgear:r6260_firmware:*:*:*:*:*:*:*:* (Version < 1.1.0.84)

AND

cpe:/h:netgear:r6260:-:*:*:*:*:*:*:*

Configuration 8:

cpe:/o:netgear:r6330_firmware:*:*:*:*:*:*:*:* (Version < 1.1.0.84)

AND

cpe:/h:netgear:r6330:-:*:*:*:*:*:*:*

Configuration 9:

cpe:/o:netgear:r6350_firmware:*:*:*:*:*:*:*:* (Version < 1.1.0.84)

AND

cpe:/h:netgear:r6350:-:*:*:*:*:*:*:*

Configuration 10:

cpe:/o:netgear:r6700v2_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:r6700v2:-:*:*:*:*:*:*:*

Configuration 11:

cpe:/o:netgear:r6800_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:r6800:-:*:*:*:*:*:*:*

Configuration 12:

cpe:/o:netgear:r6850_firmware:*:*:*:*:*:*:*:* (Version < 1.1.0.84)

AND

cpe:/h:netgear:r6850:-:*:*:*:*:*:*:*

Configuration 13:

cpe:/o:netgear:r6900v2_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:r6900v2:-:*:*:*:*:*:*:*

Configuration 14:

cpe:/o:netgear:r7200_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:r7200:-:*:*:*:*:*:*:*

Configuration 15:

cpe:/o:netgear:r7350_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:r7350:-:*:*:*:*:*:*:*

Configuration 16:

cpe:/o:netgear:r7400_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:r7400:-:*:*:*:*:*:*:*

Configuration 17:

cpe:/o:netgear:r7450_firmware:*:*:*:*:*:*:*:* (Version < 1.2.0.88)

AND

cpe:/h:netgear:r7450:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/h:netgear:r6220:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r6800:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r6850:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:d7000:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r6900:v2:*:*:*:*:*:*:*

OR cpe:/h:netgear:ac2100:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:ac2400:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:ac2600:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r7450:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r6230:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r7200:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r7350:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:r7400:-:*:*:*:*:*:*:*

OR cpe:/h:netgear:d6220:-:*:*:*:*:*:*:*

Denotes that component is vulnerable