CVE-2024-12847

NETGEAR DGN setup.cgi OS Command Injection

CVSS 9.8 CRITICALEPSS 29.0%CWE-306 CWE-78

NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending crafted HTTP requests to the setup.cgi endpoint. This vulnerability has been observed to be exploited in the wild since at least 2017 and specifically by the Shadowserver Foundation on 2025-02-06 UTC.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Productos afectados

NETGEAR · DGN1000

PoCs públicas encontradas — 2

cve_referencewww.exploit-db.com/exploits/25978no verificado cve_referencewww.exploit-db.com/exploits/43055no verificado

⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://seclists.org/bugtraq/2013/Jun/8 https://vulncheck.com/advisories/netgear-dgn https://www.exploit-db.com/exploits/25978 https://www.exploit-db.com/exploits/43055