The vulnerability is mainly related to buffer overflow. If the vulnerability is successfully exploited, an attacker can remotely execute arbitrary code in the kernel, including but not limited to installing malware to achieve man-in-the-middle hijacking or monitoring, etc. CVE-2021-45608 corresponds to the Netgear router vulnerability description, but in fact, this vulnerability affects millions of routers (Netgear, TP-Link, Tenda, EDiMAX, DLink, Western Digital) that support USB interfaces around the world.
KCodes is also very responsible, and after receiving the vulnerability notification, it released a patch to all suppliers on November 19, 2021, to fix the vulnerability. After that, Netgear released an update to fix the vulnerabilities in some routers, but more routers have no firmware to fix the vulnerabilities for the time being.