Soumettre #603668: Netgear D6400 1.0.0.114 OS Command Injectioninformation

TitreNetgear D6400 1.0.0.114 OS Command Injection
DescriptionWe found an Command Injection vulnerability in Netgear router with firmware which was released recently, allows remote attackers to execute arbitrary OS commands from a crafted request.In diag.cgi function, host_name is directly passed by the attacker, so we can control the host_name to attack the OS.
La source⚠️ https://github.com/wudipjq/my_vuln/blob/main/Netgear7/vuln_66/66.md
Utilisateur
 Bond (UID 87064)
Soumission25/06/2025 08:43 (il y a 10 mois)
Modérer10/07/2025 08:46 (15 days later)
StatutAccepté
Entrée VulDB315867 [Netgear D6400 1.0.0.114 diag.cgi host_name élévation de privilèges]
Points18

PrécédentAperçuSuivant

Might our Artificial Intelligence support you?

Check our Alexa App!