Soumettre #603669: Belkin F9K1122 1.00.33 OS Command Injectioninformation

TitreBelkin F9K1122 1.00.33 OS Command Injection
DescriptionWe found an Command Injection vulnerability in Belkin router with firmware which was released recently, allows remote attackers to execute arbitrary OS commands from a crafted request.In formSetWanStatic function, m_wan_ipaddr、m_wan_netmask、m_wan_gateway、m_wan_staticdns1、m_wan_staticdns2 is directly passed by the attacker, so we can control the m_wan_ipaddr、m_wan_netmask、m_wan_gateway、m_wan_staticdns1、m_wan_staticdns2 to attack the OS.
La source⚠️ https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_1/1.md
Utilisateur
 Bond (UID 87064)
Soumission25/06/2025 08:44 (il y a 10 mois)
Modérer05/07/2025 17:25 (10 days later)
StatutAccepté
Entrée VulDB314995 [Belkin F9K1122 1.00.33 webs /goform/formSetWanStatic élévation de privilèges]
Points20

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!