3 matches found
CVE-2022-27946
NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands such as telnetd via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to adminaccount.cgi...
CVE-2022-27946
NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands such as telnetd via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to adminaccount.cgi...
CVE-2022-27946
The CVE-2022-27946 vulnerability affects NETGEAR R8500 devices running firmware 1.0.2.158. It allows remote authenticated users to execute arbitrary commands (e.g., telnetd) by injecting shell metacharacters into the sysNewPasswd and sysConfirmPasswd parameters of the admin_account.cgi page. This...