← back
CVE-2012-6297

CVE-2012-6297

EPSS 1.7%
Command Injection vulnerability exists via a CSRF in DD-WRT 24-sp2 from specially crafted configuration values containing shell meta-characters, which could let a remote malicious user cause a Denial of Service.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://lists.openwall.net/bugtraq/2013/07/12/2https://packetstormsecurity.com/files/cve/CVE-2012-6297https://seclists.org/fulldisclosure/2013/Oct/241https://vuldb.com/?id.9527