CVE-2021-34947

NETGEAR R7800 net-cgi Out-Of-Bounds Write Remote Code Execution Vulnerability

Description

NETGEAR R7800 net-cgi Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of the soap_block_table file. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated data structure. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-13055.

INFO

Published Date :

2024-05-07T22:54:22.897Z

Last Modified :

2024-08-04T00:26:55.741Z

Source :

zdi

AFFECTED PRODUCTS

The following products are affected by CVE-2021-34947 vulnerability.

Vendors	Products
Netgear	D7800 D7800 Firmware Ex2700 Ex2700 Firmware Ex6100 Ex6100 Firmware Ex6150 Ex6150 Firmware Ex6200 Ex6200 Firmware Ex6250 Ex6250 Firmware Ex6400 Ex6400 Firmware Ex6400v2 Ex6400v2 Firmware Ex6410 Ex6410 Firmware Ex6420 Ex6420 Firmware Ex6500v1 Ex6500v1 Firmware Ex7300 Ex7300 Firmware Ex7300v2 Ex7300v2 Firmware Ex7320 Ex7320 Firmware Ex7700 Ex7700 Firmware Ex8000 Ex8000 Firmware Lbr1020 Lbr1020 Firmware Lbr20 Lbr20 Firmware R6700ax R6700ax Firmware R7800 R7800 Firmware R8900 R8900 Firmware R9000 R9000 Firmware Rax10 Rax10 Firmware Rax120 Rax120 Firmware Rax120v2 Rax120v2 Firmware Rax70 Rax70 Firmware Rax78 Rax78 Firmware Rbr10 Rbr10 Firmware Rbr20 Rbr20 Firmware Rbr40 Rbr40 Firmware Rbr50 Rbr50 Firmware Rbs10 Rbs10 Firmware Rbs20 Rbs20 Firmware Rbs40 Rbs40 Firmware Rbs50 Rbs50 Firmware Rbs50y Rbs50y Firmware Wn3000rpv2 Wn3000rpv2 Firmware Wnr2000v5 Wnr2000v5 Firmware Xr450 Xr450 Firmware Xr500 Xr500 Firmware Xr700 Xr700 Firmware

Vendors

Products

Netgear

D7800
D7800 Firmware
Ex2700
Ex2700 Firmware
Ex6100
Ex6100 Firmware
Ex6150
Ex6150 Firmware
Ex6200
Ex6200 Firmware
Ex6250
Ex6250 Firmware
Ex6400
Ex6400 Firmware
Ex6400v2
Ex6400v2 Firmware
Ex6410
Ex6410 Firmware
Ex6420
Ex6420 Firmware
Ex6500v1
Ex6500v1 Firmware
Ex7300
Ex7300 Firmware
Ex7300v2
Ex7300v2 Firmware
Ex7320
Ex7320 Firmware
Ex7700
Ex7700 Firmware
Ex8000
Ex8000 Firmware
Lbr1020
Lbr1020 Firmware
Lbr20
Lbr20 Firmware
R6700ax
R6700ax Firmware
R7800
R7800 Firmware
R8900
R8900 Firmware
R9000
R9000 Firmware
Rax10
Rax10 Firmware
Rax120
Rax120 Firmware
Rax120v2
Rax120v2 Firmware
Rax70
Rax70 Firmware
Rax78
Rax78 Firmware
Rbr10
Rbr10 Firmware
Rbr20
Rbr20 Firmware
Rbr40
Rbr40 Firmware
Rbr50
Rbr50 Firmware
Rbs10
Rbs10 Firmware
Rbs20
Rbs20 Firmware
Rbs40
Rbs40 Firmware
Rbs50
Rbs50 Firmware
Rbs50y
Rbs50y Firmware
Wn3000rpv2
Wn3000rpv2 Firmware
Wnr2000v5
Wnr2000v5 Firmware
Xr450
Xr450 Firmware
Xr500
Xr500 Firmware
Xr700
Xr700 Firmware

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2021-34947.

URL	Resource
https://kb.netgear.com/000064044/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2021-0129
https://www.zerodayinitiative.com/advisories/ZDI-21-1116/

CVSS Vulnerability Scoring System

V3.0

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact