Authentication Bypass Vulnerability in NETGEAR D7000 Devices
CVE-2021-45495

6.5MEDIUM

Key Information:

Vendor

Netgear
Status
D7000 Firmware
Vendor
CVE Published:
26 December 2021

What is CVE-2021-45495?

NETGEAR D7000 devices running firmware versions prior to 1.0.1.68 are vulnerable to an authentication bypass flaw, which could allow unauthorized users to gain access without proper credentials. This vulnerability poses a significant risk by potentially enabling attackers to exploit system weaknesses for malicious purposes.

References

https://kb.netgear.com/000064055/Security-Advisory-for-Au...
x_refsource_MISC

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2021-45495 : Authentication Bypass Vulnerability in NETGEAR D7000 Devices