3 matches found
CVE-2021-34979
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6260 1.1.0.781.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SOAP requests. When parsing the SOAPAction...
CVE-2021-34979
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6260 1.1.0.781.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SOAP requests. When parsing the SOAPAction...
CVE-2021-34979
CVE-2021-34979 affects NETGEAR R6260 routers (firmware around 1.1.0.78_1.0.1 as cited). The root cause is improper validation of the length of user-supplied data in the handling of SOAP requests, specifically when parsing the SOAPAction header, leading to a fixed-buffer overflow in mini_httpd. Th...