8 matches found
EUVD-2024-35350
Malicious code in bioql PyPI...
CVE-2024-51015
Netgear R7000P v1.3.3.154 was discovered to contain a command injection vulnerability via the devicename2 parameter at operationmode.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...
CVE-2024-35520
Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMTinvite.cgi via devicename2 parameter...
NETGEAR R7000P Command Injection Vulnerability
The NETGEAR R7000P is a wireless router from NETGEAR. A command injection vulnerability exists in NETGEAR R7000P v1.3.3.154, which stems from the devicename2 parameter in the operationmode.cgi component failing to correctly filter constructed command special characters, commands, and so on. An...
NETGEAR R7000 Command Injection Vulnerability
The NETGEAR R7000 is a wireless router from NETGEAR. The NETGEAR R7000 version 1.0.11.136 suffers from a command injection vulnerability that stems from the devicename2 parameter failing to correctly filter constructed command special characters, commands, and so on. An attacker could exploit thi...
CVE-2024-35520
Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMTinvite.cgi via devicename2 parameter...
CVE-2024-35520
Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMTinvite.cgi via devicename2 parameter...
CVE-2024-35520
Netgear R7000 (version 1.0.11.136) is affected by a Command Injection in RMT_invite.cgi via the device_name2 parameter. Root cause: insufficient input sanitization when processing this parameter, enabling arbitrary command execution by a remote attacker. Documented impact is high for confidential...