2 matches found
CVE-2022-27947
NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands such as telnetd via shell metacharacters in the ipv6fix.cgi ipv6wanipaddr, ipv6lanipaddr, ipv6wanlength, or ipv6lanlength parameter...
CVE-2022-27947
CVE-2022-27947 affects NETGEAR R8500 devices (version 1.0.2.158) where remote authenticated attackers can inject shell metacharacters in ipv6_fix.cgi parameters (ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, ipv6_lan_length) to execute arbitrary commands (e.g., telnetd). The vulnerability ar...