CVE-2021-45608

Name: CVE-2021-45608
Creator: NVD / NIST
Published: 2021-12-26T01:15:18.083+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10EPSS 2.51%

Last modified Jun 17, 2026

CVE-2021-45608 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Certain D-Link, Edimax, NETGEAR, TP-Link, Tenda, and Western Digital devices are affected by an integer overflow by an unauthenticated attacker. Remote code execution from the WAN interface (TCP port 20005) cannot be ruled out; however, exploitability was judged to be of "rather significant complexity" but not "impossible." The overflow is in SoftwareBus_dispatchNormalEPMsgOut in the KCodes NetUSB kernel module. EPSS estimates a 2.51% chance of exploitation in the next 30 days.

Description

Certain D-Link, Edimax, NETGEAR, TP-Link, Tenda, and Western Digital devices are affected by an integer overflow by an unauthenticated attacker. Remote code execution from the WAN interface (TCP port 20005) cannot be ruled out; however, exploitability was judged to be of "rather significant complexity" but not "impossible." The overflow is in SoftwareBus_dispatchNormalEPMsgOut in the KCodes NetUSB kernel module. Affected NETGEAR devices are D7800 before 1.0.1.68, R6400v2 before 1.0.4.122, and R6700v3 before 1.0.4.122.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

2.51%

82.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-190

Affected Software

Vendor	Product	Versions
Netgear	D7800 Firmware	< 1.0.1.68
Netgear	R6400v2 Firmware	< 1.0.4.122
Netgear	R6700v3 Firmware	< 1.0.4.122

References

https://kb.netgear.com/000064437/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Multiple-Products-PSV-2021-0278Patch, Vendor Advisory
https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/Exploit, Patch, Third Party Advisory
https://kb.netgear.com/000064437/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Multiple-Products-PSV-2021-0278Patch, Vendor Advisory
https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/Exploit, Patch, Third Party Advisory

Timeline

Published: Dec 26, 2021
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2021-45608?

How severe is CVE-2021-45608?

CVE-2021-45608 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 2.51% probability of exploitation in the next 30 days.

How do I fix CVE-2021-45608?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-45608?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST