CVE-2021-45508

Vulnerability

An authentication bypass vulnerability exists in certain NETGEAR WiFi system models. The affected models are: CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, and RBR850 before 3.2.17.12 [1]. The vulnerability may be triggered by an unauthenticated attacker over the network.

Exploitation

An attacker can exploit the authentication bypass without prior authentication by sending specially crafted requests to the affected device over the network. No user interaction is required. The exact mechanism is not detailed in available references, but the advisory indicates it is remotely exploitable [1].

Impact

Successful exploitation allows an attacker to bypass authentication and gain unauthorized access to administrative functions of the device. This could lead to full compromise of the device, including modification of settings, information disclosure, or further network penetration [1].

Mitigation

NETGEAR has released fixed firmware versions for all affected models. Users should update to the latest firmware: CBR40 to 2.5.0.24 or later, CBR750 to 4.6.3.6 or later, and all Orbi models to 3.2.17.12 or later [1]. No workarounds are mentioned. The advisory was published on 2021-09-26.