Buffer overflow in Netgear Mk62

CVE-2021-29073

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R8000P before 1.4.1.66, MK62 before 1.0.6.110, MR60 before 1.0.6.110, MS60 before 1.0.6.110, R7960P before 1.4.1.66, R7900P before…

Vulnerability class: Buffer Overflow

EPSS: 0.003 (25.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.6 (High). Vector: CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2021-29073?
CVE-2021-29073 is a high-severity vulnerability in Netgear Mk62, classified under Out-of-bounds Write. CVSS score: 7.6/10. Published 2021-03-23.
How severe is CVE-2021-29073?
High severity. CVSS v3 base score is 7.6 out of 10.