Lucene search
+L

5 matches found

Circl
Circl
added 2025/03/31 9:31 p.m.6 views

CVE-2024-54805

creationtimestamp| type| source ---|---|--- 2025-03-31 21:31:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9774...

9.8CVSS4.8AI score0.02275EPSS
Exploits1References1
NVD
NVD
added 2025/03/31 9:15 p.m.21 views

CVE-2024-54805

Netgear WNR854T 1.5.2 North America is vulnerable to Command Injection. An attacker can send a specially crafted request to post.cgi, updating the nvram parameter getemail. After which, they can visit the sendlog.cgi endpoint which uses the parameter in a system call to achieve command execution...

9.8CVSS0.02275EPSS
Exploits1References1
OSV
OSV
added 2025/03/31 9:15 p.m.3 views

CVE-2024-54805

Netgear WNR854T 1.5.2 North America is vulnerable to Command Injection. An attacker can send a specially crafted request to post.cgi, updating the nvram parameter getemail. After which, they can visit the sendlog.cgi endpoint which uses the parameter in a system call to achieve command execution...

9.8CVSS5.8AI score0.02275EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/31 12:0 a.m.22 views

CVE-2024-54805

Netgear WNR854T 1.5.2 North America is vulnerable to Command Injection. An attacker can send a specially crafted request to post.cgi, updating the nvram parameter getemail. After which, they can visit the sendlog.cgi endpoint which uses the parameter in a system call to achieve command execution...

0.02275EPSS
Exploits1References1
CVE
CVE
added 2025/03/31 12:0 a.m.60 views

CVE-2024-54805

Netgear WNR854T 1.5.2 (North America) is vulnerable to a Command Injection flaw. The vulnerability arises in the nvram get_email parameter used by post.cgi; a crafted request can update nvram, after which send_log.cgi uses that parameter in a system call to achieve command execution. This can be ...

9.8CVSS7.2AI score0.02275EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder