CVE-2021-37566

Vulnerability

CVE-2021-37566 is an out-of-bounds write vulnerability in the IEEE 1905 protocol handling of MediaTek chipsets including MT7603E, MT7610, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, and MT7915, when running software version 2.0.2. The vulnerability affects NETGEAR devices and other OEM products using these chipsets [1][2].

Exploitation

An unauthenticated attacker on the same network can send specially crafted IEEE 1905 packets to trigger the out-of-bounds write. No user interaction is required. The specific attack vector is through protocol message parsing [1][2].

Impact

Successful exploitation could lead to memory corruption, potentially resulting in remote code execution or denial of service. The severity is rated High by MediaTek [1].

Mitigation

MediaTek has notified device OEMs and provided security patches [1]. NETGEAR has released firmware updates for several affected products, including EAX11v2 (1.0.3.34), EAX12 (1.0.3.34), EX3700 (1.0.0.96), EX3800 (1.0.0.96), EX6120 (1.0.0.68), EX6130 (1.0.0.48), EX6250v2 (1.0.3.32), EX6400v3 (1.0.3.32), EX6410v2 (1.0.3.32), EX6470 (1.0.3.32), WAC104 (1.0.4.20), WAC124 (1.0.4.8), WAX202 (1.0.5.1), and WAX206 (1.0.4.0). No workarounds are available [2].