Command Injection Vulnerability in NETGEAR WiFi Systems
CVE-2021-45582
8.4HIGH
Summary
NETGEAR WiFi systems are susceptible to a command injection vulnerability that can be exploited by an authenticated user. This security issue affects several models, allowing attackers to execute arbitrary commands on the devices. The vulnerability has been identified in various versions of the RBK752, RBR750, RBS750, RBK852, RBR850, and RBS850 models, all prior to version 3.2.16.6. Users are urged to update their devices to the latest version to mitigate potential risks. For more information, refer to the NETGEAR security advisory.
References
CVSS V3.1
Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved