CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-35348

Malicious code in bioql PyPI...

8.4CVSS8.2AI score0.00268EPSS

Exploits0References1

CNVD•added 2024/11/07 12:0 a.m.•5 views

NETGEAR R8500 genie_fix2.cgi Component Command Injection Vulnerability

The NETGEAR R8500 is a wireless router from NETGEAR. A command injection vulnerability exists in the NETGEAR R8500 v1.0.2.160, which stems from the wangateway parameter in the geniefix2.cgi component failing to correctly filter constructed command special characters, commands, and so on. An...

8CVSS7.4AI score0.00386EPSS

Exploits0References1

NVD•added 2024/11/05 3:15 p.m.•15 views

CVE-2024-52019

Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the wangateway parameter at geniefix2.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

8CVSS0.00386EPSS

Exploits0References2

NVD•added 2024/11/05 3:15 p.m.•17 views

CVE-2024-51021

Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a command injection vulnerability via the wangateway parameter at geniefix2.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request...

8CVSS0.00426EPSS

Exploits0References2

CNNVD•added 2024/11/05 12:0 a.m.•2 views

NETGEAR XR300、NETGEAR R7000P和NETGEAR R6400v2 安全漏洞

NETGEAR R6400v2 and others are products of NETGEAR USA.NETGEAR R6400v2 is a router.NETGEAR R7000P is a wireless router.NETGEAR XR300 is a wireless router. A security vulnerability exists in NETGEAR XR300 version v1.0.3.78, R7000P version v1.3.3.154, and R6400v2 version 1.0.4.128, which stems from...

8CVSS7.4AI score0.00426EPSS

Exploits0References2

Cvelist•added 2024/11/05 12:0 a.m.•12 views

CVE-2024-52019

0.00386EPSS

Exploits0References2

CVE•added 2024/11/05 12:0 a.m.•54 views

CVE-2024-51021

Affected devices: NETGEAR XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 (v2 1.0.4.128). Vulnerability: Command injection via the wan_gateway parameter in the genie_fix2.cgi script. This allows an attacker to craft a request that executes arbitrary OS commands on the device. Impact and severity...

8CVSS8.4AI score0.00426EPSS

Exploits0References2Affected Software1

OSV•added 2024/10/14 10:15 p.m.•2 views

CVE-2024-35518

Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in geniefix2.cgi via the wandns1pri parameter...

6.8CVSS5.8AI score0.00268EPSS

Exploits0References1

NVD•added 2024/10/14 10:15 p.m.•10 views

CVE-2024-35518

Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in geniefix2.cgi via the wandns1pri parameter...

8.4CVSS0.00268EPSS

Exploits0References1

CVE•added 2024/10/14 12:0 a.m.•53 views

CVE-2024-35518

CVE-2024-35518 affects Netgear EX6120 v1.0.0.68. The vulnerability is a command injection in the genie_fix2.cgi script via the wan_dns1_pri parameter, enabling arbitrary command execution. Public sources (CNVD/CNNVD/NVD) corroborate the flaw in the same version. CVSS details in the NVD/CVE record...

8.4CVSS7.3AI score0.00268EPSS

Exploits0References1Affected Software1