NETGEAR Updates
2950Warning Date
Severity Level
Warning Number
Target Sector
20 June, 2021
● High
2021-3073
All
Description:
NETGEAR has released security updates to address several vulnerabilities in the following products:
- WAC104, running firmware versions prior to 1.0.4.15
- GC108P, running firmware versions prior to 1.0.7.3
- GC108PP, running firmware versions prior to 1.0.7.3
- GS108Tv3, running firmware versions prior to 7.0.6.3
- GS110TPP, running firmware versions prior to 7.0.6.3
- GS110TPv3, running firmware versions prior to 7.0.6.3
- GS110TUP, running firmware versions prior to 1.0.4.3
- GS710TUP, running firmware versions prior to 1.0.4.3
- GS716TP, running firmware versions prior to 1.0.2.3
- GS716TPP, running firmware versions prior to 1.0.2.3
- GS724TPP, running firmware versions prior to 2.0.4.3
- GS724TPv2, running firmware versions prior to 2.0.4.3
- GS728TPPv2, running firmware versions prior to 6.0.6.3
- GS728TPv2, running firmware versions prior to 6.0.6.3
- GS752TPPv1, running firmware versions prior to 6.0.6.3
- GS752TPv2, running firmware versions prior to 6.0.6.3
- MS510TXM, running firmware versions prior to 1.0.2.3
- MS510TXUP, running firmware versions prior to 1.0.2.3
- RAX200, running firmware versions prior to 1.0.4.120
- RAX75, running firmware versions prior to 1.0.4.120
- RAX80, running firmware versions prior to 1.0.4.120
- RBK852, running firmware versions prior to 3.2.17.12
- RBR850, running firmware versions prior to 3.2.17.12
- RBS850, running firmware versions prior to 3.2.17.12
- RAX35, running firmware versions prior to 1.0.3.94
- RAX38, running firmware versions prior to 1.0.3.94
- RAX40, running firmware versions prior to 1.0.3.94
- D8500, running firmware versions prior to 1.0.3.58
- R6900P, running firmware versions prior to 1.3.2.132
- R7000P, running firmware versions prior to 1.3.2.132
- R7100LG, running firmware versions prior to 1.0.0.64
- WNDR3400v3, running firmware versions prior to 1.0.1.38
- XR300, running firmware versions prior to 1.0.3.56
- D6220, running firmware versions prior to 1.0.0.48
- D6400, running firmware versions prior to 1.0.0.82
- D7000v2, running firmware versions prior to 1.0.0.52
- D7800, running firmware versions prior to 1.0.1.44
- D8500, running firmware versions prior to 1.0.3.43
- DC112A, running firmware versions prior to 1.0.0.40
- DGN2200v4, running firmware versions prior to 1.0.0.108
- RBK50, running firmware versions prior to 2.3.0.32
- RBR50, running firmware versions prior to 2.3.0.32
- RBS50, running firmware versions prior to 2.3.0.32
- RBK20, running firmware versions prior to 2.3.0.28
- RBR20, running firmware versions prior to 2.3.0.28
- RBS20, running firmware versions prior to 2.3.0.28
- RBK40, running firmware versions prior to 2.3.0.28
- RBR40, running firmware versions prior to 2.3.0.28
- RBS40, running firmware versions prior to 2.3.0.28
- R6020, running firmware versions prior to 1.0.0.34
- R6080, running firmware versions prior to 1.0.0.34
- R6120, running firmware versions prior to 1.0.0.44
- R6220, running firmware versions prior to 1.1.0.80
- R6230, running firmware versions prior to 1.1.0.80
- R6250, running firmware versions prior to 1.0.4.34
- R6260, running firmware versions prior to 1.1.0.40
- R6850, running firmware versions prior to 1.1.0.40
- R6350, running firmware versions prior to 1.1.0.40
- R6400v2, running firmware versions prior to 1.0.2.62
- R6700v3, running firmware versions prior to 1.0.2.62
- R6700v2, running firmware versions prior to 1.2.0.36
- R6800, running firmware versions prior to 1.2.0.36
- R6900v2, running firmware versions prior to 1.2.0.36
- R7000, running firmware versions prior to 1.0.9.34
- R6900P, running firmware versions prior to 1.3.1.44
- R7000P, running firmware versions prior to 1.3.1.44
- R7100LG, running firmware versions prior to 1.0.0.48
- R7200, running firmware versions prior to 1.2.0.48
- R7350, running firmware versions prior to 1.2.0.48
- R7400, running firmware versions prior to 1.2.0.48
- R7450, running firmware versions prior to 1.2.0.36
- AC2100, running firmware versions prior to 1.2.0.36
- AC2400, running firmware versions prior to 1.2.0.36
- AC2600, running firmware versions prior to 1.2.0.36
- R7500v2, running firmware versions prior to 1.0.3.38
- R7800, running firmware versions prior to 1.0.2.58
- R7900, running firmware versions prior to 1.0.3.8
- R7960P, running firmware versions prior to 1.4.1.44
- R8000, running firmware versions prior to 1.0.4.28
- R7900P, running firmware versions prior to 1.4.1.30
- R8000P, running firmware versions prior to 1.4.1.30
- R8900, running firmware versions prior to 1.0.4.2
- R9000, running firmware versions prior to 1.0.4.2
- RAX120, running firmware versions prior to 1.0.0.74
- RBK752, running firmware versions prior to 3.2.16.6
- RBR750, running firmware versions prior to 3.2.16.6
- RBS750, running firmware versions prior to 3.2.16.6
- RBK852, running firmware versions prior to 3.2.16.6
- RBR850, running firmware versions prior to 3.2.16.6
- RBS850, running firmware versions prior to 3.2.16.6
- WNR3500Lv2, running firmware versions prior to 1.2.0.56
- XR450, running firmware versions prior to 2.3.2.32
- XR500, running firmware versions prior to 2.3.2.32
- MK62, running firmware versions prior to 1.0.6.110
- MR60, running firmware versions prior to 1.0.6.110
- MS60, running firmware versions prior to 1.0.6.110
- RAX15, running firmware versions prior to 1.0.2.82
- RAX20, running firmware versions prior to 1.0.2.82
- RAX200, running firmware versions prior to 1.0.3.106
- RAX45, running firmware versions prior to 1.0.2.32
- RAX50, running firmware versions prior to 1.0.2.32
- RAX75, running firmware versions prior to 1.0.3.106
- RAX80, running firmware versions prior to 1.0.3.106
- CBR40, running firmware versions prior to 2.5.0.14
- EX6100v2, running firmware versions prior to 1.0.1.98
- EX6150v2, running firmware versions prior to 1.0.1.98
- EX6250, running firmware versions prior to 1.0.0.132
- EX6400, running firmware versions prior to 1.0.2.158
- EX6400v2, running firmware versions prior to 1.0.0.132
- EX6410, running firmware versions prior to 1.0.0.132
- EX6420, running firmware versions prior to 1.0.0.132
- EX7300, running firmware versions prior to 1.0.2.158
- EX7300v2, running firmware versions prior to 1.0.0.132
- EX7320, running firmware versions prior to 1.0.0.132
- EX7700, running firmware versions prior to 1.0.0.216
- EX8000, running firmware versions prior to 1.0.1.232
- R7800, running firmware versions prior to 1.0.2.78
- RBK12, running firmware versions prior to 2.6.1.44
- RBR10, running firmware versions prior to 2.6.1.44
- RBS10, running firmware versions prior to 2.6.1.44
- RBK20, running firmware versions prior to 2.6.1.38
- RBR20, running firmware versions prior to 2.6.1.36
- RBS20, running firmware versions prior to 2.6.1.38
- RBK40, running firmware versions prior to 2.6.1.38
- RBR40, running firmware versions prior to 2.6.1.36
- RBS40, running firmware versions prior to 2.6.1.38
- RBK50, running firmware versions prior to 2.6.1.40
- RBR50, running firmware versions prior to 2.6.1.40
- RBS50, running firmware versions prior to 2.6.1.40
- RBS40V, running firmware versions prior to 2.6.2.4
- RBS50Y, running firmware versions prior to 2.6.1.40
- RBW30, running firmware versions prior to 2.6.2.2
- XR500, running firmware versions prior to 2.3.2.114
- RBK852, running firmware versions prior to 3.2.10.11
- RBR850, running firmware versions prior to 3.2.10.11
- RBS850, running firmware versions prior to 3.2.10.11
- CBR40, running firmware versions prior to 2.5.0.10
- EAX20, running firmware versions prior to 1.0.0.48
- RBK752, running firmware versions prior to 3.2.10.10
- RBR750, running firmware versions prior to 3.2.10.10
- RBS750, running firmware versions prior to 3.2.10.10
- RAX40, running firmware versions prior to 1.0.3.64
- D6200, running firmware versions prior to 1.1.00.40
- D7000, running firmware versions prior to 1.0.1.78
- R6020, running firmware versions prior to 1.0.0.48
- R6080, running firmware versions prior to 1.0.0.48
- R6120, running firmware versions prior to 1.0.0.66
- R6260, running firmware versions prior to 1.1.0.78
- R6700v2, running firmware versions prior to 1.2.0.76
- R6800, running firmware versions prior to 1.2.0.76
- R6900v2, running firmware versions prior to 1.2.0.76
- R6850, running firmware versions prior to 1.1.0.78
- R7200, running firmware versions prior to 1.2.0.76
- R7350, running firmware versions prior to 1.2.0.76
- R7400, running firmware versions prior to 1.2.0.76
- R7450, running firmware versions prior to 1.2.0.76
- AC2100, running firmware versions prior to 1.2.0.76
- AC2400, running firmware versions prior to 1.2.0.76
- AC2600, running firmware versions prior to 1.2.0.76
- RAX40, running firmware versions prior to 1.0.3.62
- RAX35, running firmware versions prior to 1.0.3.62
- R6120, running firmware versions prior to 1.0.0.76
- R6400, running firmware versions prior to 1.0.1.70
- XR300, running firmware versions prior to 1.0.3.50
- RBK40, running firmware versions prior to 2.5.1.16
- RBR40, running firmware versions prior to 2.5.1.16
- RBS40, running firmware versions prior to 2.5.1.16
- RBK20, running firmware versions prior to 2.5.1.16
- RBR20, running firmware versions prior to 2.5.1.16
- RBS20, running firmware versions prior to 2.5.1.16
- RBK50, running firmware versions prior to 2.5.1.16
- RBR50, running firmware versions prior to 2.5.1.16
- RBS50, running firmware versions prior to 2.5.1.16
- R6020, running firmware versions prior to 1.0.0.42
- R6080, running firmware versions prior to 1.0.0.42
- R6400v2, running firmware versions prior to 1.0.4.98
- R6700v3, running firmware versions prior to 1.0.4.98
- R7900, running firmware versions prior to 1.0.3.18
- R8000, running firmware versions prior to 1.0.4.46
- R6400, running firmware versions prior to 1.0.1.52
- D7800, running firmware versions prior to 1.0.1.56
- R7800, running firmware versions prior to 1.0.2.68
- R8900, running firmware versions prior to 1.0.4.26
- R9000, running firmware versions prior to 1.0.4.26
- R6400, running firmware versions prior to 1.0.1.50
- R7900P, running firmware versions prior to 1.4.1.50
- R8000P, running firmware versions prior to 1.4.1.50
- RAX75, running firmware versions prior to 1.0.1.62
- RAX80, running firmware versions prior to 1.0.1.62
- R6400v2, running firmware versions prior to 1.0.4.84
- R6700v3, running firmware versions prior to 1.0.4.84
- R6700v2, running firmware versions prior to 1.2.0.62
- R6900v2, running firmware versions prior to 1.2.0.62
- R7000P, running firmware versions prior to 1.3.2.124
- R6250, running firmware versions prior to 1.0.4.36
- R6300v2, running firmware versions prior to 1.0.4.36
- R6400v2, running firmware versions prior to 1.0.2.66
- R6700v3, running firmware versions prior to 1.0.2.66
- R6700, running firmware versions prior to 1.0.2.8
- R6900, running firmware versions prior to 1.0.2.8
- R7000, running firmware versions prior to 1.0.9.88
- R7100LG, running firmware versions prior to 1.0.0.52
- R7900, running firmware versions prior to 1.0.3.10
- RAX80, running firmware versions prior to 1.0.1.40
- RAX120, running firmware versions prior to 1.0.0.78
- RBK20, running firmware versions prior to 2.3.5.26
- RBR20, running firmware versions prior to 2.3.5.26
- RBS20, running firmware versions prior to 2.3.5.26
- RBK40, running firmware versions prior to 2.3.5.30
- RBR40, running firmware versions prior to 2.3.5.30
- RBS40, running firmware versions prior to 2.3.5.30
- RBK50, running firmware versions prior to 2.3.5.30
- RBR50, running firmware versions prior to 2.3.5.30
- RBS50, running firmware versions prior to 2.3.5.30
- XR500, running firmware versions prior to 2.3.2.56
- D8500, running firmware versions prior to 1.0.3.44
- R6700, running firmware versions prior to 1.0.2.6
- R6900, running firmware versions prior to 1.0.2.4
- R6900P, running firmware versions prior to 1.3.2.126
- R7000, running firmware versions prior to 1.0.9.42
- R7000P, running firmware versions prior to 1.3.2.126
- R7100LG, running firmware versions prior to 1.0.0.50
- R7300DST, running firmware versions prior to 1.0.0.70
- R8300, running firmware versions prior to 1.0.2.130
- R8500, running firmware versions prior to 1.0.2.130
- D3600, running firmware versions prior to 1.0.0.76
- D6000, running firmware versions prior to 1.0.0.76
- D6200, running firmware versions prior to 1.1.00.36
- D7000, running firmware versions prior to 1.0.1.70
- EX6200v2, running firmware versions prior to 1.0.1.78
- EX7000, running firmware versions prior to 1.0.1.78
- EX8000, running firmware versions prior to 1.0.1.186
- JR6150, running firmware versions prior to 1.0.1.18
- PR2000, running firmware versions prior to 1.0.0.28
- R6050, running firmware versions prior to 1.0.1.18
- R6120, running firmware versions prior to 1.0.0.46
- R6260, running firmware versions prior to 1.1.0.64
- R6300v2, running firmware versions prior to 1.0.4.34
- R6900P, running firmware versions prior to 1.3.1.64
- R7000P, running firmware versions prior to 1.3.1.64
- R7800, running firmware versions prior to 1.0.2.60
- R8900, running firmware versions prior to 1.0.4.12
- R9000, running firmware versions prior to 1.0.4.12
- XR500, running firmware versions prior to 2.3.2.40
- D6100, running firmware versions prior to 1.0.0.60
- D6220, running firmware versions prior to 1.0.0.52
- D6400, running firmware versions prior to 1.0.0.86
- D7000v2, running firmware versions prior to 1.0.0.53
- DC112A, running firmware versions prior to 1.0.0.42
- DGN2200v4, running firmware versions prior to 1.0.0.110
- DGND2200Bv4, running firmware versions prior to 1.0.0.109
- DM200, running firmware versions prior to 1.0.0.61
- R6400, running firmware versions prior to 1.0.1.46
- R7000, running firmware versions prior to 1.0.9.60
- WNDR3400v3, running firmware versions prior to 1.0.1.24
- WNR2020, running firmware versions prior to 1.1.0.62
- WNR3500Lv2, running firmware versions prior to 1.2.0.62
- XR450, running firmware versions prior to 2.3.2.40
- D3600, running firmware versions prior to 1.0.0.72
- D6000, running firmware versions prior to 1.0.0.72
- D6100, running firmware versions prior to 1.0.0.63
- D6200, running firmware versions prior to 1.1.00.34
- DGND2200Bv4, running firmware versions prior to 1.0.0.108
- EX2700, running firmware versions prior to 1.0.1.48
- EX3700, running firmware versions prior to 1.0.0.76
- EX3800, running firmware versions prior to 1.0.0.76
- EX6000, running firmware versions prior to 1.0.0.38
- EX6100, running firmware versions prior to 1.0.2.24
- EX6100v2, running firmware versions prior to 1.0.1.76
- EX6120, running firmware versions prior to 1.0.0.42
- EX6130, running firmware versions prior to 1.0.0.28
- EX6150v1, running firmware versions prior to 1.0.0.42
- EX6150v2, running firmware versions prior to 1.0.1.76
- EX6200, running firmware versions prior to 1.0.3.88
- EX6200v2, running firmware versions prior to 1.0.1.72
- EX6400, running firmware versions prior to 1.0.2.136
- EX7000, running firmware versions prior to 1.0.0.66
- EX7300, running firmware versions prior to 1.0.2.136
- EX8000, running firmware versions prior to 1.0.1.180
- RBK50, running firmware versions prior to 2.1.4.10
- RBR50, running firmware versions prior to 2.1.4.10
- RBS50, running firmware versions prior to 2.1.4.10
- RBK40, running firmware versions prior to 2.1.4.10
- RBR40, running firmware versions prior to 2.1.4.10
- RBS40, running firmware versions prior to 2.1.4.10
- RBW30, running firmware versions prior to 2.2.1.204
- R6020, running firmware versions prior to 1.0.0.38
- R6080, running firmware versions prior to 1.0.0.38
- R6220, running firmware versions prior to 1.1.0.86
- R6300v2, running firmware versions prior to 1.0.4.32
- R6400, running firmware versions prior to 1.0.1.44
- R6700, running firmware versions prior to 1.0.1.48
- R6900, running firmware versions prior to 1.0.1.48
- R7800, running firmware versions prior to 1.0.2.52
- R8300, running firmware versions prior to 1.0.2.128
- R8500, running firmware versions prior to 1.0.2.128
- R9000, running firmware versions prior to 1.0.3.10
- RBS40V, running firmware versions prior to 2.2.0.58
- RBK50V, running firmware versions prior to 2.2.0.58
- WN2000RPTv3, running firmware versions prior to 1.0.1.32
- WN2500RPv2, running firmware versions prior to 1.0.1.54
- WN3000RPv3, running firmware versions prior to 1.0.2.78
- WN3100RPv2, running firmware versions prior to 1.0.0.66
- WNDR3400v3, running firmware versions prior to 1.0.1.22
- WNDR3700v4, running firmware versions prior to 1.0.2.102
- WNDR4300v1, running firmware versions prior to 1.0.2.104
- WNDR4300v2, running firmware versions prior to 1.0.0.56
- WNDR4500v3, running firmware versions prior to 1.0.0.56
- WNR2000v5 (R2000), running firmware versions prior to 1.0.0.66
- WNR2050, running firmware versions prior to 1.1.0.62
- XR500, running firmware versions prior to 2.3.2.22
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Authentication bypass
- Code injection
- Buffer overflow
- Cross-site scripting (XSS)
Best practice and Recommendations:
The CERT team encourages users to review NETGEAR security advisory and apply the necessary updates:
- https://kb.netgear.com/000063787/Security-Advisory-for-Security-Misconfiguration-on-WAC104-PSV-2021-0124
- https://kb.netgear.com/000063786/Security-Advisory-for-Authentication-Bypass-on-WAC104-PSV-2021-0106
- https://kb.netgear.com/000063785/Security-Advisory-for-Authentication-Bypass-on-WAC104-PSV-2021-0075
- https://kb.netgear.com/000063784/Security-Advisory-for-Pre-Authentication-Command-Injection-on-Some-Insight-Managed-Switches-and-Smart-Managed-Pro-Switches-PSV-2021-0071
- https://kb.netgear.com/000063783/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Routers-and-WiFi-Systems-PSV-2020-0528
- https://kb.netgear.com/000063782/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2020-0416
- https://kb.netgear.com/000063781/Security-Advisory-for-Pre-Authentication-Command-Injection-on-Some-Gateways-and-Routers-PSV-2020-0297
- https://kb.netgear.com/000063780/Security-Advisory-for-Missing-Function-Level-Access-Control-on-Some-Routers-Gateways-and-WiFi-Systems-PSV-2020-0273
- https://kb.netgear.com/000063779/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-Some-Routers-and-WiFi-Systems-PSV-2020-0225
- https://kb.netgear.com/000063778/Security-Advisory-for-Pre-Authentication-Command-Injection-on-Some-Extenders-Routers-and-WiFi-Systems-PSV-2020-0025
- https://kb.netgear.com/000063777/Security-Advisory-for-Authentication-Bypass-on-Some-Extenders-and-WiFi-Systems-PSV-2020-0008
- https://kb.netgear.com/000063776/Security-Advisory-for-Stored-Cross-Site-Scripting-on-RAX40-PSV-2019-0263
- https://kb.netgear.com/000063775/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-and-Gateways-PSV-2019-0245
- https://kb.netgear.com/000063774/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-and-Gateways-PSV-2019-0193
- https://kb.netgear.com/000063773/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-and-Gateways-PSV-2019-0192
- https://kb.netgear.com/000063772/Security-Advisory-for-Out-of-Bounds-Read-and-Write-on-Some-Routers-PSV-2019-0187
- https://kb.netgear.com/000063771/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-R6400-PSV-2019-0166
- https://kb.netgear.com/000063770/Security-Advisory-for-Pre-Authentication-Command-Injection-on-Some-WiFi-Systems-PSV-2019-0151
- https://kb.netgear.com/000063769/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-and-Gateways-PSV-2019-0113
- https://kb.netgear.com/000063768/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2019-0082
- https://kb.netgear.com/000063767/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-R6400-PSV-2019-0058
- https://kb.netgear.com/000063765/Security-Advisory-for-Pre-Authentication-Command-Injection-on-Some-Routers-and-Gateways-PSV-2018-0616
- https://kb.netgear.com/000063764/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Routers-PSV-2018-0566
- https://kb.netgear.com/000063763/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Routers-PSV-2018-0565
- https://kb.netgear.com/000063762/Security-Advisory-for-Post-Authentication-Command-Injection-on-Some-Routers-PSV-2018-0564
- https://kb.netgear.com/000063761/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-Gateways-and-WiFi-Systems-PSV-2018-0515
- https://kb.netgear.com/000063760/Security-Advisory-for-Vertical-Privilege-Escalation-on-Some-Routers-and-Gateways-PSV-2018-0385
- https://kb.netgear.com/000063759/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-Some-Routers-Gateways-and-Extenders-PSV-2018-0378
- https://kb.netgear.com/000063758/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-and-Gateways-PSV-2018-0244
- https://kb.netgear.com/000063757/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-Extenders-and-WiFi-Systems-PSV-2017-2449