Submeter #603668: Netgear D6400 1.0.0.114 OS Command Injectioninformação

TítuloNetgear D6400 1.0.0.114 OS Command Injection
DescriçãoWe found an Command Injection vulnerability in Netgear router with firmware which was released recently, allows remote attackers to execute arbitrary OS commands from a crafted request.In diag.cgi function, host_name is directly passed by the attacker, so we can control the host_name to attack the OS.
Fonte⚠️ https://github.com/wudipjq/my_vuln/blob/main/Netgear7/vuln_66/66.md
Utilizador
 Bond (UID 87064)
Submissão25/06/2025 08h43 (há 10 meses)
Moderação10/07/2025 08h46 (15 days later)
EstadoAceite
Entrada VulDB315867 [Netgear D6400 1.0.0.114 diag.cgi host_name Elevação de Privilégios]
Pontos18

VoltarVisão GeralPróximo

Interested in the pricing of exploits?

See the underground prices here!