漏洞描述
漏洞对象】Netgear 【涉及版本】NetGear DGN1000、Netgear DGN2200 【漏洞描述】 NetGearDGN1000、Netgear DGN2200存在远程身份验证绕过漏洞,远程攻击者可利用此漏洞绕过身份验证机制并以提升的权限在受影响设备上下文中执行任意代码。
Netgear DGN1000-代码注入
PoC代码
暂无相关漏洞推荐
- POC CVE-2021-20167: Netgear RAX43 1.0.3.96 - Command Injection/Authentication Bypass Buffer Overrun
- POC CVE-2024-30568: Netgear R6850 V1.1.0.88 - Command Injection
- POC CVE-2024-30569: Netgear R6850 - Information Disclosure
- POC CVE-2024-30570: Netgear R6850 - Information Disclosure
- POC CVE-2024-57046: Netgear DGN2200 - Improper Authentication
- POC CVE-2024-6646: Netgear-WN604 downloadFile.php - Information Disclosure
- POC netgear-boarddataww-rce: Netgear Devices boardDataWW.php - Remote Command Execution
- POC dlink-netgear-xss: Dlink DSR-250 and Netgear Prosafe - Cross-Site Scripting
- POC netgear-dgn-rce: Netgear DGN Devices - Command Execution
- POC netgear-wnr614-auth-bypass: Netgear WNR614 - Improper Authentication
- Netgear 路由器多版本管理后台 downloadFile.php 信息泄露漏洞(CVE-2024-6646)
- Netgear-WN604 downloadFile.php 信息泄露漏洞
- Netgear WN604 siteSurvey.php 未授权访问漏洞