CVE-2021-45545 : What You Need to Know

Certain NETGEAR devices are affected by command injection vulnerability by an authenticated user, impacting various router models.

Understanding CVE-2021-45545

What is CVE-2021-45545?

The CVE-2021-45545 vulnerability involves command injection on certain NETGEAR devices when used by an authenticated user, affecting specific router models listed in the description.

The Impact of CVE-2021-45545

The vulnerability has a CVSS v3.1 base score of 8.4, classified as high severity due to its impact on confidentiality, integrity, and availability, with high privileges required and user interaction not needed.

Technical Details of CVE-2021-45545

Vulnerability Description

A command injection vulnerability allows authenticated users to execute arbitrary commands on affected NETGEAR devices, including routers like R8000, RAX80, and RBK852, among others.

Affected Systems and Versions

R7850 before 1.0.5.74
R7900P before 1.4.2.84
R7960P before 1.4.2.84
R8000 before 1.0.4.74
R8000P before 1.4.2.84
RAX200 before 1.0.4.120
RAX75 before 1.0.4.120
RAX80 before 1.0.4.120
RBK852 before 3.2.17.12
RBR850 before 3.2.17.12
RBS850 before 3.2.17.12

Exploitation Mechanism

The vulnerability is exploited by authenticated users to inject and execute malicious commands, potentially leading to system compromise, data leakage, or service disruption.

Mitigation and Prevention

Immediate Steps to Take

Update affected devices to the latest firmware versions provided by NETGEAR.
Restrict network access to trusted users and devices.

Long-Term Security Practices

Implement strong authentication mechanisms for device access.
Regularly monitor and audit network traffic for suspicious activities.

Patching and Updates

Apply security patches promptly to mitigate the vulnerability and enhance the overall security posture of the affected NETGEAR devices.