N/A

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.66, EX2700 before 1.0.1.68, WN3000RPv2 before 1.0.0.90, WN3000RPv3 before 1.0.2.100, LBR1020 before 2.6.5.20, LBR20 before 2.6.5.32, R6700AX before 1.0.10.110, R7800 before 1.0.2.86, R8900 before 1.0.5.38, R9000 before 1.0.5.38, RAX10 before 1.0.10.110, RAX120v1 before 1.2.3.28, RAX120v2 before 1.2.3.28, RAX70 before 1.0.10.110, RAX78 before 1.0.10.110, XR450 before 2.3.2.130, XR500 before 2.3.2.130, and XR700 before 1.0.1.46.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

N/A

NETGEAR 操作系统命令注入漏洞

NETGEAR是美国网件（NETGEAR）公司的一款路由器。连接两个或多个网络的硬件设备，在网络间起网关的作用。 某些 NETGEAR 设备存在操作系统命令注入漏洞，该漏洞源于某些NETGEAR设备会受到认证用户的命令回注的影响。影响1.0.1.66之前的D7800, 1.0.1.68之前的EX2700, 1.0.0.90之前的WN3000RPv2, 1.0.2.100之前的WN3000RPv3, 2.6.5.20之前的LBR1020, 2.6.5.32之前的LBR20, 1.0.10.110之前的R67

N/A

N/A