Vulnerability Details CVE-2021-34947
NETGEAR R7800 net-cgi Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 routers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the parsing of the soap_block_table file. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated data structure. An attacker can leverage this vulnerability to execute code in the context of root.
. Was ZDI-CAN-13055.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.6%
CVSS Severity
CVSS v3 Score 8.8
References
- https://kb.netgear.com/000064044/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2021-0129
- https://www.zerodayinitiative.com/advisories/ZDI-21-1116/
- https://kb.netgear.com/000064044/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2021-0129
- https://www.zerodayinitiative.com/advisories/ZDI-21-1116/
Products affected by CVE-2021-34947
-
cpe:2.3:h:netgear:d7800:-
-
cpe:2.3:h:netgear:ex2700:-
-
cpe:2.3:h:netgear:ex6100:v2
-
cpe:2.3:h:netgear:ex6150:v2
-
cpe:2.3:h:netgear:ex6200:v2
-
cpe:2.3:h:netgear:ex6250:-
-
cpe:2.3:h:netgear:ex6400:-
-
cpe:2.3:h:netgear:ex6400v2:-
-
cpe:2.3:h:netgear:ex6410:-
-
cpe:2.3:h:netgear:ex6420:-
-
cpe:2.3:h:netgear:ex6500v1:-
-
cpe:2.3:h:netgear:ex7300:-
-
cpe:2.3:h:netgear:ex7300v2:-
-
cpe:2.3:h:netgear:ex7320:-
-
cpe:2.3:h:netgear:ex7700:-
-
cpe:2.3:h:netgear:ex8000:-
-
cpe:2.3:h:netgear:lbr1020:-
-
cpe:2.3:h:netgear:lbr20:-
-
cpe:2.3:h:netgear:r6700ax:-
-
cpe:2.3:h:netgear:r7800:-
-
cpe:2.3:h:netgear:r8900:-
-
cpe:2.3:h:netgear:r9000:-
-
cpe:2.3:h:netgear:rax10:-
-
cpe:2.3:h:netgear:rax120:-
-
cpe:2.3:h:netgear:rax120v2:-
-
cpe:2.3:h:netgear:rax70:-
-
cpe:2.3:h:netgear:rax78:-
-
cpe:2.3:h:netgear:rbr10:-
-
cpe:2.3:h:netgear:rbr20:-
-
cpe:2.3:h:netgear:rbr40:-
-
cpe:2.3:h:netgear:rbr50:-
-
cpe:2.3:h:netgear:rbs10:-
-
cpe:2.3:h:netgear:rbs20:-
-
cpe:2.3:h:netgear:rbs40:-
-
cpe:2.3:h:netgear:rbs50:-
-
cpe:2.3:h:netgear:rbs50y:-
-
cpe:2.3:h:netgear:wn3000rpv2:-
-
cpe:2.3:h:netgear:wnr2000v5:-
-
cpe:2.3:h:netgear:xr450:-
-
cpe:2.3:h:netgear:xr500:-
-
cpe:2.3:h:netgear:xr700:-
-
cpe:2.3:o:netgear:d7800_firmware:-
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.22
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.24
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.28
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.30
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.31
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.34
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.40
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.42
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.44
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.47
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.56
-
cpe:2.3:o:netgear:d7800_firmware:1.0.1.58
-
cpe:2.3:o:netgear:ex2700_firmware:-
-
cpe:2.3:o:netgear:ex2700_firmware:1.0.1.28
-
cpe:2.3:o:netgear:ex2700_firmware:1.0.1.32
-
cpe:2.3:o:netgear:ex2700_firmware:1.0.1.42
-
cpe:2.3:o:netgear:ex2700_firmware:1.0.1.48
-
cpe:2.3:o:netgear:ex2700_firmware:1.0.1.52
-
cpe:2.3:o:netgear:ex2700_firmware:1.0.1.58
-
cpe:2.3:o:netgear:ex6100_firmware:-
-
cpe:2.3:o:netgear:ex6100_firmware:1.0.1.50
-
cpe:2.3:o:netgear:ex6100_firmware:1.0.1.54
-
cpe:2.3:o:netgear:ex6100_firmware:1.0.1.60
-
cpe:2.3:o:netgear:ex6100_firmware:1.0.1.70
-
cpe:2.3:o:netgear:ex6100_firmware:1.0.1.76
-
cpe:2.3:o:netgear:ex6100_firmware:1.0.1.98
-
cpe:2.3:o:netgear:ex6150_firmware:-
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.0.34_1.0.70
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.0.36
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.0.38
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.0.42
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.0.46
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.0.46_1.0.76
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.0.48
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.1.50
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.1.54
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.1.60
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.1.70
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.1.76
-
cpe:2.3:o:netgear:ex6150_firmware:1.0.1.98
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.44
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.50
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.52
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.56
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.62
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.64
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.72
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.74
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.78
-
cpe:2.3:o:netgear:ex6200_firmware:1.0.1.82
-
cpe:2.3:o:netgear:ex6250_firmware:-
-
cpe:2.3:o:netgear:ex6250_firmware:1.0.0.128
-
cpe:2.3:o:netgear:ex6250_firmware:1.0.0.132
-
cpe:2.3:o:netgear:ex6250_firmware:1.0.0.134
-
cpe:2.3:o:netgear:ex6400_firmware:-
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.0.132
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.1.60
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.1.72
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.1.78
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.2.136
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.2.140
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.2.152
-
cpe:2.3:o:netgear:ex6400_firmware:1.0.2.158
-
cpe:2.3:o:netgear:ex6400v2_firmware:1.0.0.128
-
cpe:2.3:o:netgear:ex6400v2_firmware:1.0.0.134
-
cpe:2.3:o:netgear:ex6410_firmware:-
-
cpe:2.3:o:netgear:ex6410_firmware:1.0.0.128
-
cpe:2.3:o:netgear:ex6410_firmware:1.0.0.132
-
cpe:2.3:o:netgear:ex6410_firmware:1.0.0.134
-
cpe:2.3:o:netgear:ex6420_firmware:-
-
cpe:2.3:o:netgear:ex6420_firmware:1.0.0.132
-
cpe:2.3:o:netgear:ex6420_firmware:1.0.0.134
-
cpe:2.3:o:netgear:ex6500v1_firmware:*
-
cpe:2.3:o:netgear:ex7300_firmware:-
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.1
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.1.60
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.1.62
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.1.72
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.1.78
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.2.136
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.2.140
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.2.152
-
cpe:2.3:o:netgear:ex7300_firmware:1.0.2.158
-
cpe:2.3:o:netgear:ex7300v2_firmware:1.0.0.128
-
cpe:2.3:o:netgear:ex7300v2_firmware:1.0.0.134
-
cpe:2.3:o:netgear:ex7320_firmware:-
-
cpe:2.3:o:netgear:ex7320_firmware:1.0.0.128
-
cpe:2.3:o:netgear:ex7320_firmware:1.0.0.134
-
cpe:2.3:o:netgear:ex7700_firmware:-
-
cpe:2.3:o:netgear:ex7700_firmware:1.0.0.210
-
cpe:2.3:o:netgear:ex7700_firmware:1.0.0.216
-
cpe:2.3:o:netgear:ex8000_firmware:-
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.0.102
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.0.114
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.0.118
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.0.126
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.1.180
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.1.186
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.1.224
-
cpe:2.3:o:netgear:ex8000_firmware:1.0.1.232
-
cpe:2.3:o:netgear:lbr1020_firmware:2.6.5.20
-
cpe:2.3:o:netgear:lbr20_firmware:2.6.3.50
-
cpe:2.3:o:netgear:r6700ax_firmware:*
-
cpe:2.3:o:netgear:r7800_firmware:-
-
cpe:2.3:o:netgear:r7800_firmware:1.0.1.30
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.16
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.28
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.30
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.32
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.36
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.38
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.40
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.42
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.44
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.46
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.52
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.58
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.60
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.62
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.68
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.74
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.78
-
cpe:2.3:o:netgear:r7800_firmware:1.0.2.80
-
cpe:2.3:o:netgear:r8900_firmware:-
-
cpe:2.3:o:netgear:r8900_firmware:1.0.2.60
-
cpe:2.3:o:netgear:r8900_firmware:1.0.3.10
-
cpe:2.3:o:netgear:r8900_firmware:1.0.3.6
-
cpe:2.3:o:netgear:r8900_firmware:1.0.4.12
-
cpe:2.3:o:netgear:r8900_firmware:1.0.4.2
-
cpe:2.3:o:netgear:r8900_firmware:1.0.4.26
-
cpe:2.3:o:netgear:r8900_firmware:1.0.4.28
-
cpe:2.3:o:netgear:r8900_firmware:1.0.5.18
-
cpe:2.3:o:netgear:r8900_firmware:1.0.5.2
-
cpe:2.3:o:netgear:r8900_firmware:1.0.5.24
-
cpe:2.3:o:netgear:r8900_firmware:1.0.5.26
-
cpe:2.3:o:netgear:r9000_firmware:-
-
cpe:2.3:o:netgear:r9000_firmware:1.0.2.30
-
cpe:2.3:o:netgear:r9000_firmware:1.0.2.4
-
cpe:2.3:o:netgear:r9000_firmware:1.0.2.40
-
cpe:2.3:o:netgear:r9000_firmware:1.0.2.52
-
cpe:2.3:o:netgear:r9000_firmware:1.0.3.10
-
cpe:2.3:o:netgear:r9000_firmware:1.0.3.16
-
cpe:2.3:o:netgear:r9000_firmware:1.0.3.6
-
cpe:2.3:o:netgear:r9000_firmware:1.0.4.12
-
cpe:2.3:o:netgear:r9000_firmware:1.0.4.2
-
cpe:2.3:o:netgear:r9000_firmware:1.0.4.26
-
cpe:2.3:o:netgear:r9000_firmware:1.0.4.28
-
cpe:2.3:o:netgear:r9000_firmware:1.0.4.8
-
cpe:2.3:o:netgear:r9000_firmware:1.0.5.18
-
cpe:2.3:o:netgear:r9000_firmware:1.0.5.2
-
cpe:2.3:o:netgear:r9000_firmware:1.0.5.24
-
cpe:2.3:o:netgear:r9000_firmware:1.0.5.26
-
cpe:2.3:o:netgear:rax10_firmware:-
-
cpe:2.3:o:netgear:rax120_firmware:-
-
cpe:2.3:o:netgear:rax120_firmware:1.0.0.74
-
cpe:2.3:o:netgear:rax120_firmware:1.0.0.78
-
cpe:2.3:o:netgear:rax120_firmware:1.0.1.108
-
cpe:2.3:o:netgear:rax120_firmware:1.0.1.136
-
cpe:2.3:o:netgear:rax120_firmware:1.2.0.16
-
cpe:2.3:o:netgear:rax120v2_firmware:-
-
cpe:2.3:o:netgear:rax70_firmware:-
-
cpe:2.3:o:netgear:rax78_firmware:-
-
cpe:2.3:o:netgear:rbr10_firmware:2.6.1.44
-
cpe:2.3:o:netgear:rbr10_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbr20_firmware:-
-
cpe:2.3:o:netgear:rbr20_firmware:2.3.0.22
-
cpe:2.3:o:netgear:rbr20_firmware:2.3.0.28
-
cpe:2.3:o:netgear:rbr20_firmware:2.3.5.26
-
cpe:2.3:o:netgear:rbr20_firmware:2.5.1.16
-
cpe:2.3:o:netgear:rbr20_firmware:2.6.1.36
-
cpe:2.3:o:netgear:rbr20_firmware:2.6.2.104
-
cpe:2.3:o:netgear:rbr20_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbr40_firmware:-
-
cpe:2.3:o:netgear:rbr40_firmware:2.3.0.28
-
cpe:2.3:o:netgear:rbr40_firmware:2.3.5.30
-
cpe:2.3:o:netgear:rbr40_firmware:2.5.1.16
-
cpe:2.3:o:netgear:rbr40_firmware:2.6.1.36
-
cpe:2.3:o:netgear:rbr40_firmware:2.6.1.38
-
cpe:2.3:o:netgear:rbr40_firmware:2.6.2.104
-
cpe:2.3:o:netgear:rbr40_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbr50_firmware:-
-
cpe:2.3:o:netgear:rbr50_firmware:2.3.0.22
-
cpe:2.3:o:netgear:rbr50_firmware:2.3.0.32
-
cpe:2.3:o:netgear:rbr50_firmware:2.3.5.30
-
cpe:2.3:o:netgear:rbr50_firmware:2.5.1.16
-
cpe:2.3:o:netgear:rbr50_firmware:2.6.1.40
-
cpe:2.3:o:netgear:rbr50_firmware:2.7.2.102
-
cpe:2.3:o:netgear:rbr50_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbs10_firmware:2.6.1.44
-
cpe:2.3:o:netgear:rbs10_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbs20_firmware:-
-
cpe:2.3:o:netgear:rbs20_firmware:2.3.0.22
-
cpe:2.3:o:netgear:rbs20_firmware:2.3.0.28
-
cpe:2.3:o:netgear:rbs20_firmware:2.3.5.26
-
cpe:2.3:o:netgear:rbs20_firmware:2.5.1.16
-
cpe:2.3:o:netgear:rbs20_firmware:2.6.1.38
-
cpe:2.3:o:netgear:rbs20_firmware:2.6.2.104
-
cpe:2.3:o:netgear:rbs20_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbs40_firmware:-
-
cpe:2.3:o:netgear:rbs40_firmware:2.1.4.10
-
cpe:2.3:o:netgear:rbs40_firmware:2.3.0.22
-
cpe:2.3:o:netgear:rbs40_firmware:2.3.0.28
-
cpe:2.3:o:netgear:rbs40_firmware:2.3.5.30
-
cpe:2.3:o:netgear:rbs40_firmware:2.5.1.16
-
cpe:2.3:o:netgear:rbs40_firmware:2.6.1.38
-
cpe:2.3:o:netgear:rbs40_firmware:2.6.2.104
-
cpe:2.3:o:netgear:rbs40_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbs50_firmware:-
-
cpe:2.3:o:netgear:rbs50_firmware:2.1.4.10
-
cpe:2.3:o:netgear:rbs50_firmware:2.3.0.22
-
cpe:2.3:o:netgear:rbs50_firmware:2.3.0.32
-
cpe:2.3:o:netgear:rbs50_firmware:2.3.5.30
-
cpe:2.3:o:netgear:rbs50_firmware:2.5.1.16
-
cpe:2.3:o:netgear:rbs50_firmware:2.6.1.40
-
cpe:2.3:o:netgear:rbs50_firmware:2.7.2.102
-
cpe:2.3:o:netgear:rbs50_firmware:2.7.3.22
-
cpe:2.3:o:netgear:rbs50y_firmware:1.0.0.56
-
cpe:2.3:o:netgear:rbs50y_firmware:2.5.1.106
-
cpe:2.3:o:netgear:rbs50y_firmware:2.6.1.40
-
cpe:2.3:o:netgear:rbs50y_firmware:2.7.3.22
-
cpe:2.3:o:netgear:wn3000rpv2_firmware:-
-
cpe:2.3:o:netgear:wn3000rpv2_firmware:1.0.0.68
-
cpe:2.3:o:netgear:wn3000rpv2_firmware:1.0.0.78
-
cpe:2.3:o:netgear:wnr2000v5_firmware:-
-
cpe:2.3:o:netgear:wnr2000v5_firmware:1.0.0.34
-
cpe:2.3:o:netgear:wnr2000v5_firmware:1.0.0.41
-
cpe:2.3:o:netgear:wnr2000v5_firmware:1.0.0.42
-
cpe:2.3:o:netgear:wnr2000v5_firmware:1.0.0.66
-
cpe:2.3:o:netgear:wnr2000v5_firmware:1.0.0.70
-
cpe:2.3:o:netgear:wnr2000v5_firmware:1.0.0.76
-
cpe:2.3:o:netgear:xr450_firmware:-
-
cpe:2.3:o:netgear:xr450_firmware:2.3.2.114
-
cpe:2.3:o:netgear:xr450_firmware:2.3.2.32
-
cpe:2.3:o:netgear:xr450_firmware:2.3.2.40
-
cpe:2.3:o:netgear:xr450_firmware:2.3.2.66
-
cpe:2.3:o:netgear:xr500_firmware:-
-
cpe:2.3:o:netgear:xr500_firmware:2.3.2.114
-
cpe:2.3:o:netgear:xr500_firmware:2.3.2.22
-
cpe:2.3:o:netgear:xr500_firmware:2.3.2.32
-
cpe:2.3:o:netgear:xr500_firmware:2.3.2.40
-
cpe:2.3:o:netgear:xr500_firmware:2.3.2.56
-
cpe:2.3:o:netgear:xr500_firmware:2.3.2.66
-
cpe:2.3:o:netgear:xr700_firmware:-
-
cpe:2.3:o:netgear:xr700_firmware:1.0.1.10
-
cpe:2.3:o:netgear:xr700_firmware:1.0.1.20
-
cpe:2.3:o:netgear:xr700_firmware:1.0.1.34
-
cpe:2.3:o:netgear:xr700_firmware:1.0.1.36