4 matches found
Metasploit Weekly Wrap-Up 06/28/2024
Unauthenticated Command Injection in Netis Router This week's Metasploit release includes an exploit module for an unauthenticated command injection vulnerability in the Netis MW5360 router which is being tracked as CVE-2024-22729. The vulnerability stems from improper handling of the password...
CVE-2024-22729
creationtimestamp| type| source ---|---|--- 2024-01-25 16:27:28+00:00| seen| https://t.me/ctinow/173555 2024-02-01 20:16:35+00:00| seen| https://t.me/ctinow/177765 2024-02-18 15:11:57+00:00| seen| https://t.me/ctinow/187269 2024-06-24 12:06:04+00:00| seen|...
CVE-2024-22729
NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter on the login page...
CVE-2024-22729
Netis MW5360 router (firmware 1.0.1.3031) is affected by a command-injection vulnerability in the login page’s password parameter. The issue allows unauthenticated attackers to execute arbitrary OS commands (reported as unauthenticated RCE) by sending crafted input, potentially compromising the r...