CVE-2024-12847

NETGEAR DGN setup.cgi OS Command Injection

CVSS 9.8 CRITICALEPSS 29.0%CWE-306 CWE-78

NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending crafted HTTP requests to the setup.cgi endpoint. This vulnerability has been observed to be exploited in the wild since at least 2017 and specifically by the Shadowserver Foundation on 2025-02-06 UTC.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Produtos afetados

NETGEAR · DGN1000

PoCs públicas encontradas — 2

cve_referencewww.exploit-db.com/exploits/25978não verificado cve_referencewww.exploit-db.com/exploits/43055não verificado

⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://seclists.org/bugtraq/2013/Jun/8 https://vulncheck.com/advisories/netgear-dgn https://www.exploit-db.com/exploits/25978 https://www.exploit-db.com/exploits/43055