exploitDog

GHSA-9729-7gh5-v22r

Опубликовано: 27 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi.

NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi.

Ссылки

EPSS

Процентиль: 91%

0.06442

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2022-27945

CVSS3: 8.8

nvd

почти 4 года назад

NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi.

EPSS

Процентиль: 91%

0.06442

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-78