MediaTek microchips, as used in NETGEAR devices through 2021-12-13 and other devices, mishandle attempts at Wi-Fi authentication flooding. (Affected Chipsets MT7603E, MT7612, MT7613, MT7615, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 7.4.0.0).
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
History
06 Jan 2022, 15:41
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.8
v3 : 7.5 |
CPE | cpe:2.3:h:mediatek:mt7628:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7613:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7615:-:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7603e_firmware:7.4.0.0:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7629_firmware:7.4.0.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7612:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7629:-:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7628_firmware:7.4.0.0:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7622_firmware:7.4.0.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7915:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7603e:-:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7915_firmware:7.4.0.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7622:-:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7615_firmware:7.4.0.0:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7612_firmware:7.4.0.0:*:*:*:*:*:*:* cpe:2.3:o:mediatek:mt7613_firmware:7.4.0.0:*:*:*:*:*:*:* |
|
CWE | CWE-20 | |
References | (CONFIRM) https://corp.mediatek.com/product-security-bulletin/January-2022 - Vendor Advisory | |
References | (MISC) https://kb.netgear.com/000064369/Security-Advisory-for-WiFi-Authentication-Flooding-Vulnerabilities-on-Multiple-Products-PSV-2021-0299-PSV-2021-0301 - Third Party Advisory |
05 Jan 2022, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | MediaTek microchips, as used in NETGEAR devices through 2021-12-13 and other devices, mishandle attempts at Wi-Fi authentication flooding. (Affected Chipsets MT7603E, MT7612, MT7613, MT7615, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 7.4.0.0). |
26 Dec 2021, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-12-26 00:15
Updated : 2024-02-04 22:08
NVD link : CVE-2021-41788
Mitre link : CVE-2021-41788
CVE.ORG link : CVE-2021-41788
JSON object : View
Products Affected
mediatek
- mt7612_firmware
- mt7629_firmware
- mt7629
- mt7628_firmware
- mt7615_firmware
- mt7603e_firmware
- mt7622_firmware
- mt7628
- mt7613
- mt7603e
- mt7612
- mt7915_firmware
- mt7615
- mt7915
- mt7622
- mt7613_firmware
CWE
CWE-20
Improper Input Validation