CVE-2021-34947

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2021-34947
NETGEAR R7800 net-cgi Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of the soap_block_table file. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated data structure. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-13055.

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector : AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 2.8 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://kb.netgear.com/000064044/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2021-0129 Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-1116/ Third Party Advisory
https://kb.netgear.com/000064044/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2021-0129 Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-1116/ Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:netgear:d7800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:d7800:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:netgear:ex2700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex2700:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:netgear:ex6100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6100:v2:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:netgear:ex6150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6150:v2:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:netgear:ex6200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6200:v2:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:netgear:ex6250_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6250:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:netgear:ex6400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6400:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:netgear:ex6400v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6400v2:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:netgear:ex6410_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6410:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:netgear:ex6420_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6420:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:netgear:ex6500v1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6500v1:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:netgear:ex7300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7300:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:netgear:ex7300v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7300v2:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:netgear:ex7320_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7320:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:netgear:ex7700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7700:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:netgear:ex8000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex8000:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:netgear:lbr1020_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:lbr1020:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:netgear:lbr20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:lbr20:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:netgear:r6700ax_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r6700ax:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:netgear:r7800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r7800:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:netgear:r8900_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r8900:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:netgear:r9000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r9000:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:netgear:rax10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax10:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:netgear:rax120_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax120:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:netgear:rax120v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax120v2:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:netgear:rax70_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax70:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:netgear:rax78_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax78:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:netgear:rbr10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr10:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:netgear:rbr20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr20:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:netgear:rbr40_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr40:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:netgear:rbr50_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr50:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:netgear:rbs10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs10:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:netgear:rbs20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs20:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:netgear:rbs40_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs40:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:netgear:rbs50_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs50:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:netgear:rbs50y_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs50y:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:netgear:wn3000rpv2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wn3000rpv2:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:netgear:wnr2000v5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wnr2000v5:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:netgear:xr450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xr450:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:netgear:xr500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xr500:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:netgear:xr700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xr700:-:*:*:*:*:*:*:*
History

14 Aug 2025, 01:42

Type Values Removed Values Added
References () https://kb.netgear.com/000064044/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2021-0129 - () https://kb.netgear.com/000064044/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Routers-PSV-2021-0129 - Third Party Advisory
References () https://www.zerodayinitiative.com/advisories/ZDI-21-1116/ - () https://www.zerodayinitiative.com/advisories/ZDI-21-1116/ - Third Party Advisory
CPE cpe:2.3:o:netgear:r9000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex2700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:d7800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r6700ax:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rax70_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbr40_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:xr500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xr700:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:xr700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbs40_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6410:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6400v2:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbs20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex7300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:r8900_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr10:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rax120v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r9000:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6500v1:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6420_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6200:v2:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex7300v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:r7800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs10:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:lbr1020:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6250_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbs10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wn3000rpv2:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr40:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r7800:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6250:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex7700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex8000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax10:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:wn3000rpv2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbs50y_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax120v2:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax120:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6500v1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6400v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs50:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xr500:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:d7800:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs40:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:lbr20:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7320:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex7320_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbr10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:lbr1020_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbr50_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7700:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex8000:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:lbr20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:r6700ax_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6420:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6150:v2:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbs50_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs50y:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:xr450:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6400:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7300:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbs20:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex2700:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex6100:v2:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rax10_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:ex7300v2:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:xr450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr50:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rbr20:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rax120_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rax78_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r8900:-:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wnr2000v5:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:wnr2000v5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:netgear:rbr20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax78:-:*:*:*:*:*:*:*
cpe:2.3:o:netgear:ex6410_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:netgear:rax70:-:*:*:*:*:*:*:*
First Time Netgear lbr20
Netgear lbr20 Firmware
Netgear rbr20
Netgear ex6420 Firmware
Netgear rax10
Netgear ex6150
Netgear ex6250 Firmware
Netgear lbr1020
Netgear rbs10
Netgear ex6410
Netgear ex6500v1
Netgear rbr50 Firmware
Netgear wnr2000v5
Netgear xr500 Firmware
Netgear rax78 Firmware
Netgear r9000
Netgear lbr1020 Firmware
Netgear ex6400
Netgear rax120
Netgear rbs40
Netgear rbs20 Firmware
Netgear rbs10 Firmware
Netgear r9000 Firmware
Netgear rbs50 Firmware
Netgear r6700ax Firmware
Netgear ex7700
Netgear rax120 Firmware
Netgear xr450
Netgear xr700
Netgear rbs50y
Netgear ex6250
Netgear ex7300v2
Netgear ex6400 Firmware
Netgear ex7320 Firmware
Netgear rax70
Netgear rbr10
Netgear rbs40 Firmware
Netgear ex6400v2
Netgear r8900
Netgear rbr10 Firmware
Netgear ex8000
Netgear d7800
Netgear ex7320
Netgear xr450 Firmware
Netgear rbs20
Netgear rax70 Firmware
Netgear xr500
Netgear ex8000 Firmware
Netgear ex6410 Firmware
Netgear rax10 Firmware
Netgear ex6400v2 Firmware
Netgear r7800
Netgear ex6100 Firmware
Netgear r8900 Firmware
Netgear rbs50y Firmware
Netgear rbr20 Firmware
Netgear r7800 Firmware
Netgear ex2700
Netgear rbr40
Netgear ex2700 Firmware
Netgear ex7300
Netgear ex6200
Netgear rbs50
Netgear wnr2000v5 Firmware
Netgear d7800 Firmware
Netgear ex7700 Firmware
Netgear wn3000rpv2
Netgear ex6500v1 Firmware
Netgear xr700 Firmware
Netgear rax120v2 Firmware
Netgear rax120v2
Netgear ex6200 Firmware
Netgear wn3000rpv2 Firmware
Netgear rbr50
Netgear ex6420
Netgear ex6150 Firmware
Netgear ex7300 Firmware
Netgear rbr40 Firmware
Netgear r6700ax
Netgear ex6100
Netgear ex7300v2 Firmware
Netgear
Netgear rax78
Information

Published : 2024-05-07 23:15

Updated : 2025-08-14 01:42

NVD link : CVE-2021-34947

Mitre link : CVE-2021-34947

CVE.ORG link : CVE-2021-34947

JSON object : View

Products Affected

netgear

  • xr700_firmware
  • ex6420_firmware
  • rax10
  • ex6100
  • ex7320_firmware
  • rbs50
  • ex7700
  • ex6100_firmware
  • xr700
  • ex7700_firmware
  • r7800_firmware
  • ex7320
  • ex7300
  • rax78
  • rbr50_firmware
  • rax70
  • rbs10_firmware
  • d7800
  • r9000
  • ex6150
  • lbr1020
  • r6700ax
  • rax120
  • ex6200
  • xr500
  • rbs40_firmware
  • ex2700_firmware
  • ex6250
  • rax120v2
  • rbr40_firmware
  • ex6400
  • rbr10
  • ex6400v2
  • r7800
  • rax10_firmware
  • lbr1020_firmware
  • ex6150_firmware
  • xr450
  • ex6420
  • ex2700
  • rbr10_firmware
  • ex6200_firmware
  • lbr20_firmware
  • ex6500v1_firmware
  • rbs50y
  • ex7300_firmware
  • xr500_firmware
  • lbr20
  • d7800_firmware
  • ex7300v2
  • rbs40
  • ex8000
  • rbs10
  • wnr2000v5
  • xr450_firmware
  • ex6400_firmware
  • ex6500v1
  • rbr40
  • r9000_firmware
  • rax120v2_firmware
  • wn3000rpv2_firmware
  • rax78_firmware
  • rbr20_firmware
  • rbs50y_firmware
  • ex7300v2_firmware
  • rbs50_firmware
  • rbr50
  • ex6250_firmware
  • rbr20
  • ex6410
  • wn3000rpv2
  • ex6400v2_firmware
  • r8900_firmware
  • ex6410_firmware
  • r8900
  • rbs20_firmware
  • rbs20
  • ex8000_firmware
  • wnr2000v5_firmware
  • rax120_firmware
  • r6700ax_firmware
  • rax70_firmware
CWE
CWE-787

Out-of-bounds Write