CVE-2023-38928
The CVE concerns Netgear R7100LG firmware 1.0.0.78 with a command injection in usb_remote_invite.cgi through the password parameter, enabling arbitrary command execution. Affected component is the router’s web/CGI endpoint; root cause is improper filtering of constructed command characters in the...