What is CVE-2021-20166?

CVE-2021-20166 is a vulnerability in Netgear Rax43. Published 2021-12-30.

Is CVE-2021-20166 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Netgear Rax43

CVE-2021-20166

Netgear RAX43 version 1.0.3.96 contains a buffer overrun vulnerability. The URL parsing functionality in the cgi-bin endpoint of the router containers a buffer overrun issue that can redirection control flow of the applicaiton.

EPSS: 0.642 (98.5th percentile) — read the EPSS interpretation.

Affected products

N/a Netgear Rax43 — versions 1.0.3.96

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

www.tenable.com/security/research/tra-2021-55 (x_refsource_MISC)

Frequently asked questions

What is CVE-2021-20166?: CVE-2021-20166 is a vulnerability in Netgear Rax43. Published 2021-12-30.
Is CVE-2021-20166 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.