CVE-2017-6884
CVE-2017-6884
In short
A Zyxel home router allows attackers to run arbitrary commands through the diagnostic nslookup tool by injecting malicious input into the ping_ip parameter. This gives attackers complete control over the router.
Technical detail
Command injection vulnerability in Zyxel EMG2926 firmware V1.00(AAQT.4)b8 diagnostic nslookup function allows unauthenticated remote code execution via unsanitized ping_ip parameter in the expert/maintenance/diagnostic/nslookup URI. Attack vector requires network access to the router's web interface; successful exploitation grants arbitrary command execution with router privileges.
Summary generated and translated by AI from the official description.
A command injection vulnerability was discovered on the Zyxel EMG2926 home router with firmware V1.00(AAQT.4)b8. The vulnerability is located in the diagnostic tools, specifically the nslookup function. A malicious user may exploit numerous vectors to execute arbitrary commands on the router, such as the ping_ip parameter to the expert/maintenance/diagnostic/nslookup URI.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/41782/unverifiedexploitdbwww.exploit-db.com/exploits/41782unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →