CVE-2021-45499

Vulnerability

An authentication bypass vulnerability exists in the firmware of multiple NETGEAR router models, including R6900P, R7000P, R7900P, R7960P, R8000P, RAX75, and RAX80 [1]. The vulnerability affects versions prior to 1.3.3.140 for R6900P and R7000P, prior to 1.4.2.84 for R7900P, R7960P, and R8000P, and prior to 1.0.3.106 for RAX75 and RAX80 [1]. The exact code path and conditions required for exploitation have not been publicly detailed, but the issue allows bypassing authentication mechanisms.

Exploitation

An unauthenticated attacker can exploit this vulnerability over the network to bypass authentication [1]. No user interaction or prior access is required. The specific attack vector is not disclosed in the advisory, but typical authentication bypass vulnerabilities in routers are exploitable from the local network or potentially from the WAN side if remote management is enabled.

Impact

Successful exploitation grants the attacker administrative access to the affected router [1]. This allows full control over the device, including the ability to modify settings, intercept traffic, and potentially pivot to other devices on the network.

Mitigation

NETGEAR has released fixed firmware versions for all affected models [1]. Users should update to the following versions or later: R6900P and R7000P to 1.3.3.140, R7900P, R7960P, and R8000P to 1.4.2.84, and RAX75 and RAX80 to 1.0.3.106 [1]. No workarounds are available; updating firmware is the only mitigation.