CWE-77

High likelihood

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

3,570 vulnerabilities with CWE-77
CVE-2021-45555 HIGH
NETGEAR R7900P/R7960P/R8000P < 1.4.2.84 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45554 HIGH
NETGEAR R6400/R6400v2/R6700v3/R7000/R6900P/R7000P/R8000 Firmware - Authenticated Command Injection
CVSS 8.4
CVE-2021-45553 HIGH
NETGEAR R7000/R6900P/R7000P Firmware < 1.0.11.126/1.3.2.126 - Authenticated Command Injection
CVSS 8.7
CVE-2021-45552 MEDIUM
NETGEAR D7800/R7500v2/R7800/R8900/R9000/RAX120/XR700 Firmware - Authenticated Command Injection
CVSS 6.3
CVE-2021-45551 HIGH
NETGEAR Multiple Routers - Authenticated Command Injection
CVSS 7.6
CVE-2021-45550 MEDIUM
NETGEAR Multiple Routers - Authenticated Command Injection
CVSS 6.6
CVE-2021-45549 HIGH
NETGEAR Multiple Routers < Varies - Authenticated Command Injection
CVSS 8.4
CVE-2021-45548 MEDIUM
NETGEAR Multiple Devices - Authenticated Command Injection
CVSS 6.3
CVE-2021-45547 HIGH
NETGEAR Multiple Router Models Firmware Authenticated Command Injection
CVSS 8.4
CVE-2021-45546 HIGH
NETGEAR Multiple Router Models Firmware Authenticated Command Injection
CVSS 8.4
CVE-2021-45545 HIGH
NETGEAR Multiple Router Models Firmware Authenticated Command Injection
CVSS 8.4
CVE-2021-45544 HIGH
NETGEAR R7850/R7900P/R7960P/R8000/R8000P/RAX200/RAX75/RAX80/RBK852/RBR850/RBS850 Authenticated Command Injection
CVSS 8.4
CVE-2021-45543 HIGH
NETGEAR R8000/R8000P/RAX200/R7900P/RBR850/RBS850/RBK852 Firmware - Authenticated Command Injection
CVSS 8.4
CVE-2021-45542 HIGH
NETGEAR RAX200/RAX75/RAX80 < 1.0.4.120 and RBK852/RBR850/RBS850 < 3.2.17.12 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45541 HIGH
NETGEAR Multiple Routers and WiFi Systems - Authenticated Command Injection
CVSS 8.4
CVE-2021-45540 HIGH
Netgear R7900p Firmware < 1.4.2.84 - Command Injection
CVSS 8.4
CVE-2021-45539 HIGH
NETGEAR Multiple Router Models Firmware Authenticated Command Injection
CVSS 8.4
CVE-2021-45538 HIGH
NETGEAR RAX75/RAX80/RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45537 HIGH
NETGEAR RAX200/RAX75/RAX80 <1.0.3.106 & RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 <3.2.16.6 Auth Command Injection
CVSS 8.4
CVE-2021-45536 HIGH
NETGEAR RAX75/RAX80/RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 Firmware - Authenticated Command Injection
CVSS 8.4
CVE-2021-45535 HIGH
NETGEAR RAX200/RAX80/RAX75 <1.0.3.106 & RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 <3.2.16.6 Auth Command Injection
CVSS 8.4
CVE-2021-45534 HIGH
NETGEAR Multiple Routers - Authenticated Command Injection
CVSS 7.8
CVE-2021-45533 HIGH
NETGEAR EX6120/EX6130/EX7000/EX7500/EX3700/EX3800/RBR850/RBS850/RBK852 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45532 MEDIUM
NETGEAR R8000 Firmware < 1.0.4.76 - Authenticated Command Injection
CVSS 6.7
CVE-2021-45531 HIGH
NETGEAR D6220 Firmware < 1.0.0.76 - Authenticated Command Injection
CVSS 7.1
Details
Vulnerabilities 3,570
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits