Command injection

2021-12-2601:15:00

PRIOn knowledge base

www.prio-n.com

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.0%

JSON

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects R7850 before 1.0.5.74, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000 before 1.0.4.74, R8000P before 1.4.2.84, RAX200 before 1.0.4.120, RAX75 before 1.0.4.120, RAX80 before 1.0.4.120, RBK752 before 3.2.17.12, RBK852 before 3.2.17.12, RBR750 before 3.2.17.12, RBR850 before 3.2.17.12, RBS750 before 3.2.17.12, and RBS850 before 3.2.17.12.

CPENameOperatorVersion
r7850_firmwarelt1.0.5.74
r7900p_firmwarelt1.4.2.84
r7960p_firmwarelt1.4.2.84
r8000_firmwarelt1.0.4.74
r8000p_firmwarelt1.4.2.84
rax200_firmwarelt1.0.4.120
rax75_firmwarelt1.0.4.120
rax80_firmwarelt1.0.4.120
rbk752_firmwarelt3.2.17.12
rbk852_firmwarelt3.2.17.12

Name	Operator	Version
r7850_firmware	lt	1.0.5.74
r7900p_firmware	lt	1.4.2.84
r7960p_firmware	lt	1.4.2.84
r8000_firmware	lt	1.0.4.74
r8000p_firmware	lt	1.4.2.84
rax200_firmware	lt	1.0.4.120
rax75_firmware	lt	1.0.4.120
rax80_firmware	lt	1.0.4.120
rbk752_firmware	lt	3.2.17.12
rbk852_firmware	lt	3.2.17.12