Описание
Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to execute arbitrary Perl code via a crafted request, related to the "forgot password workflow."
Ссылки
- Third Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- Broken Link
- PatchVendor Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- Broken Link
- PatchVendor Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 4.1 (включая) до 4.1.12 (исключая)Версия от 4.2 (включая) до 4.2.24 (исключая)
Одно из
cpe:2.3:o:netgear:raidiator:*:*:*:*:*:readynas:*:*
cpe:2.3:o:netgear:raidiator:*:*:*:*:*:readynas:*:*
EPSS
Процентиль: 99%
0.83489
Высокий
10 Critical
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
больше 3 лет назад
Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to execute arbitrary Perl code via a crafted request, related to the "forgot password workflow."
EPSS
Процентиль: 99%
0.83489
Высокий
10 Critical
CVSS2
Дефекты
CWE-94