Certain NETGEAR devices are affected by stored XSS. This affects R7000 before 1.0.11.110, R7900 before 1.0.4.30, R8000 before 1.0.4.62, RAX200 before 1.0.3.106, R7000P before 1.3.3.140, RAX80 before 1.0.3.106, R6900P before 1.3.3.140, and RAX75 before 1.0.3.106.
References
| Link | Resource |
|---|---|
| https://kb.netgear.com/000064456/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-PSV-2020-0003 | Patch Vendor Advisory |
Advertisement
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Information
Published : 2021-12-25 17:15
Updated : 2022-01-05 07:06
NVD link : CVE-2021-45673
Mitre link : CVE-2021-45673
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Advertisement
Products Affected
netgear
- r6900p
- r6900p_firmware
- r7000p
- rax80
- rax75_firmware
- r7000
- r7000_firmware
- rax200
- rax75
- r7000p_firmware
- r7900_firmware
- r8000
- rax80_firmware
- rax200_firmware
- r7900
- r8000_firmware