CVE-2021-45507

Vulnerability

An authentication bypass vulnerability exists in the firmware of multiple NETGEAR WiFi system models, including CBR40, CBR750, RBW30, RBK752, RBR750, RBS750, RBK852, RBR850, RBS850, and RBS40V. Affected versions are those prior to the specified fixed releases: CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBW30 before 2.6.2.2, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, RBR850 before 3.2.17.12, RBS850 before 3.2.17.12, and RBS40V before 2.6.2.8 [1].

Exploitation

An attacker with network access to the affected device can exploit this vulnerability without requiring authentication or user interaction. The exact attack vector is not detailed in the advisory, but the vulnerability allows bypassing the authentication process [1].

Impact

Successful exploitation enables an attacker to bypass authentication and gain unauthorized administrative access to the device. This could lead to full compromise of the device, including the ability to modify settings, intercept network traffic, or pivot to other devices on the network [1].

Mitigation

NETGEAR has released firmware updates to address this vulnerability. Users should update to the following fixed versions or later: CBR40 to 2.5.0.24, CBR750 to 4.6.3.6, RBW30 to 2.6.2.2, RBK752 to 3.2.17.12, RBR750 to 3.2.17.12, RBS750 to 3.2.17.12, RBK852 to 3.2.17.12, RBR850 to 3.2.17.12, RBS850 to 3.2.17.12, and RBS40V to 2.6.2.8 [1]. No workarounds are provided; updating firmware is the only mitigation.