3 matches found
Design/Logic Flaw
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists...
CVE-2021-27256
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists...
CVE-2021-27256
CVE-2021-27256 affects NETGEAR R7800 firmware 1.0.2.76. The flaw resides in the handling of the rc_service parameter passed to apply_save.cgi, where insufficient validation allows an attacker to execute arbitrary commands with root privileges. Although authentication is required, the authenticati...