← volver
CVE-2012-6297

CVE-2012-6297

EPSS 1.7%
Command Injection vulnerability exists via a CSRF in DD-WRT 24-sp2 from specially crafted configuration values containing shell meta-characters, which could let a remote malicious user cause a Denial of Service.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://lists.openwall.net/bugtraq/2013/07/12/2https://packetstormsecurity.com/files/cve/CVE-2012-6297https://seclists.org/fulldisclosure/2013/Oct/241https://vuldb.com/?id.9527