2 matches found
CVE-2022-27945
NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands such as telnetd via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi...
CVE-2022-27945
CVE-2022-27945 affects NETGEAR R8500 devices (firmware 1.0.2.158) where remote authenticated users can execute arbitrary commands via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi. Root cause is improper handling of shell metacharacters in password.cgi, ...