NETGEAR DGN setup.cgi OS Command Execution | VulnCheck Advisories

Go back

NETGEAR DGN setup.cgi OS Command Execution

severity: critical
date: January 10, 2025
Affecting: DGN1000 before 1.1.00.48
CVE: CVE-2024-12847
CVE type: Improper Neutralization of Special Elements used in an OS Command
CVSS: 9.8
CVSS V3 Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References: Exploit
Exploit
Disclosure
Credit: Roberto Paleari