CVE-2021-38523
6.9 MEDIUMNETGEAR R6400 devices before 1.0.1.70 are affected by a stack-based buffer overflow by an authenticated user
Published: 2021-08-11 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 6.9 MEDIUM
- Vector
- CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:H
- CWE
- CWE-787
Affected products
| Vendor | Product |
|---|---|
| netgear | r6400_firmware |
Description
NETGEAR R6400 devices before 1.0.1.70 are affected by a stack-based buffer overflow by an authenticated user.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2021-38523
- [Vendor advisory]https://kb.netgear.com/000063771/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-R6400-PSV-2019-0166
- [Vendor advisory]https://kb.netgear.com/000063771/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-R6400-PSV-2019-0166
Related CVEs
Same vendor
- CVE-2021-40847 — The update process of the Circle Parental Control Service on various NETGEAR routers allows remote attackers to achieve remote code execu... (8.1 HIGH)
- CVE-2021-41383 — setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands via shell metacharacters in the ntp_serve... (7.2 HIGH)
- CVE-2021-41314 — Certain NETGEAR smart switches are affected by a \n injection in the web UI's password field, which - due to several faulty aspects of th... (8.8 HIGH)
- CVE-2021-40867 — Certain NETGEAR smart switches are affected by an authentication hijacking race-condition vulnerability by an unauthenticated attacker wh... (7.8 HIGH)
- CVE-2021-40866 — Certain NETGEAR smart switches are affected by a remote admin password change by an unauthenticated attacker via the (disabled by default... (9.8 CRITICAL)
Same CWE
- CVE-2026-47750 — stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inf... (7.8 HIGH)
- CVE-2026-47747 — stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inf... (7.8 HIGH)
- CVE-2026-47749 — stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inf... (7.8 HIGH)
- CVE-2026-12314 — Memory safety bug fixed in Thunderbird 152 (7.5 HIGH)
- CVE-2026-12310 — Memory safety bug fixed in Thunderbird 152 (7.5 HIGH)