Vulnerabilities > CVE-2021-45643 - Unspecified vulnerability in Netgear R6400V2 Firmware, R6700V3 Firmware and Xr1000 Firmware

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

low complexity

netgear

NVD

Published: 2021-12-26

Updated: 2022-01-05

Summary

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6400v2 before 1.0.4.118, R6700v3 before 1.0.4.118, and XR1000 before 1.0.0.58.

Vulnerable Configurations

Part	Description	Count
OS	Netgear Netgear R6400V2 Firmware - Netgear R6400V2 Firmware 1.0.2.66 Netgear R6400V2 Firmware 1.0.4.84 Netgear R6400V2 Firmware 1.0.4.98 Netgear R6400V2 Firmware 1.0.4.102 Netgear R6400V2 Firmware 1.0.4.102_10.0.75 Netgear R6400V2 Firmware 1.0.4.106 Netgear R6700V3 Firmware - Netgear R6700V3 Firmware 1.0.2.66 Netgear R6700V3 Firmware 1.0.4.84 Netgear R6700V3 Firmware 1.0.4.98 Netgear R6700V3 Firmware 1.0.4.106 Netgear Xr1000 Firmware - Netgear Xr1000 Firmware 1.0.0.44 Netgear Xr1000 Firmware 1.0.0.50 Netgear Xr1000 Firmware 1.0.0.52	16
Hardware	Netgear Netgear R6400V2 - Netgear R6700V3 - Netgear Xr1000 -	3

References

https://kb.netgear.com/000064159/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-PSV-2021-0035