CVE-2021-45602
CVE-2021-45602 is a medium-severity vulnerability in Netgear D7800 Firmware with a CVSS 3.x base score of 6.1. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-78.
Key facts
- Severity: Medium (CVSS 3.x base score 6.1)
- CVSS v2: 4.6
- EPSS exploit prediction: 1% (49th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-78
- Affected product: Netgear D7800 Firmware
- Published:
- Last modified:
Description
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.66, EX2700 before 1.0.1.68, WN3000RPv2 before 1.0.0.90, WN3000RPv3 before 1.0.2.100, LBR1020 before 2.6.5.20, LBR20 before 2.6.5.32, R6700AX before 1.0.10.110, R7800 before 1.0.2.86, R8900 before 1.0.5.38, R9000 before 1.0.5.38, RAX10 before 1.0.10.110, RAX120v1 before 1.2.3.28, RAX120v2 before 1.2.3.28, RAX70 before 1.0.10.110, RAX78 before 1.0.10.110, XR450 before 2.3.2.130, XR500 before 2.3.2.130, and XR700 before 1.0.1.46.
Frequently asked questions
- What is CVE-2021-45602?
- Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.66, EX2700 before 1.0.1.68, WN3000RPv2 before 1.0.0.90, WN3000RPv3 before 1.0.2.100, LBR1020 before 2.6.5.20, LBR20 before 2.6.5.32, R6700AX before 1.0.10.110, R7800 before 1.0.2.86, R8900 before 1.0.5.38, R9000 before 1.0.5.38, RAX10 before 1.0.10.110, RAX120v1 before 1.2.3.28, RAX120v2 before 1.2.3.28, RAX70 before 1.0.10.110, RAX78 before 1.0.10.110, XR450 before 2.3.2.130, XR500 before 2.3.2.130, and XR700 before 1.0.1.46.
- How severe is CVE-2021-45602?
- CVE-2021-45602 has a CVSS 3.x base score of 6.1, rated medium severity. It is exploitable over local access with low attack complexity, requires low privileges and no user interaction. Impact on confidentiality is high, integrity none, and availability low.
- Is CVE-2021-45602 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (49th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2021-45602?
- CVE-2021-45602 primarily affects Netgear D7800 Firmware. In total, 18 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2021-45602?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2021-45602 published?
- CVE-2021-45602 was published on 2021-12-26 and last updated on 2026-06-17.
References
- https://immersivelabs.com/resources/blog/netgear-vulnerabilities-could-put-small-business-routers-at-risk/
- https://kb.netgear.com/000064407/Security-Advisory-for-Post-Authentication-Command-Injection-Sensitive-Information-Disclosure-on-Multiple-Products-PSV-2021-0169-PSV-2021-0171
Affected products (18)
- cpe:2.3:o:netgear:d7800_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:ex2700_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wn3000rpv2_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wn3000rpv3_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:lbr1020_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:lbr20_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6700ax_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r7800_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r8900_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r9000_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:rax10_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:rax120v1_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:rax120v2_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:rax70_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:rax78_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:xr450_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:xr500_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:xr700_firmware:*:*:*:*:*:*:*:*
More vulnerabilities in Netgear D7800 Firmware
- CVE-2021-38516 — Critical (CVSS 10.0): Certain NETGEAR devices are affected by lack of access control at the function level. This affects D6220 before…
- CVE-2021-29068 — Critical (CVSS 9.9): Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R6700v3 before…
- CVE-2020-35795 — Critical (CVSS 9.8): Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects AC2100 before…
- CVE-2018-21153 — Critical (CVSS 9.8): Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D7800 before…
- CVE-2018-21161 — Critical (CVSS 9.8): Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D7800 before…
- CVE-2019-20730 — Critical (CVSS 9.8): Certain NETGEAR devices are affected by SQL injection. This affects D3600 before 1.0.0.68, D6000 before 1.0.0.68, D6200…
All CVEs affecting Netgear D7800 Firmware →
Other CWE-78 (OS Command Injection) vulnerabilities
- CVE-2026-56004 — Critical (CVSS 10.0): A shellcode injection in the mercurial handler of the obs tar_scm source service before version 0.12.4 could be used by…
- CVE-2026-56415 — Critical (CVSS 10.0): Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is…
- CVE-2026-56413 — Critical (CVSS 10.0): Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, which listens…
- CVE-2026-49869 — Critical (CVSS 10.0): Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, AuthenticationFilter in…
- CVE-2026-49261 — Critical (CVSS 10.0): MariaDB server is a community developed fork of MySQL server. Versions 10.6.1 through 10.6.26, 10.11.1 through…
- CVE-2026-10520 — Critical (CVSS 10.0): An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a…