漏洞描述
NETGEAR DGND3700是一款功能强大的无线路由器和调制解调器(Modem)组合设备。它是NETGEAR公司生产的一款双频(2.4GHz和5GHz)路由器,旨在提供快速和可靠的互联网连接。NETGEAR DGND3700v2 存在命令执行漏洞,攻击者可执行任意命令,控制服务器权限。
NETGEAR DGND3700v2 /setup.cgi命令执行漏洞
PoC代码
暂无相关漏洞推荐
- phpMyFAQ /api/setup/backup 信息泄露漏洞(CVE-2025-69200)
- Atlassian Confluence /json/setup-restore.action 文件上传漏洞(CVE-2023-22518)
- POC CVE-2016-1555: NETGEAR WNAP320 Access Point Firmware - Remote Command Injection
- POC CVE-2016-5649: NETGEAR DGN2200 / DGND3700 - Admin Password Disclosure
- POC CVE-2016-6277: NETGEAR Routers - Remote Code Execution
- POC CVE-2017-5521: NETGEAR Routers - Authentication Bypass
- POC CVE-2020-26919: NETGEAR ProSAFE Plus - Unauthenticated Remote Code Execution
- POC CVE-2020-27866: NETGEAR - Authentication Bypass
- POC CVE-2021-20167: Netgear RAX43 1.0.3.96 - Command Injection/Authentication Bypass Buffer Overrun
- POC CVE-2022-29383: NETGEAR ProSafe SSL VPN firmware - SQL Injection
- POC CVE-2024-30568: Netgear R6850 V1.1.0.88 - Command Injection
- POC CVE-2024-30569: Netgear R6850 - Information Disclosure
- POC CVE-2024-30570: Netgear R6850 - Information Disclosure