漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v0.4.1.1 and earlier.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NETGEAR XWN5001 命令注入漏洞
Vulnerability Description
NETGEAR XWN5001是美国网件(NETGEAR)公司的一个无线接入点。 NETGEAR XWN5001 Powerline 500 WiFi v0.4.1.1及之前版本存在命令注入漏洞,攻击者利用该漏洞可以进行MITM(Man-in-the-Middle)攻击,修改用户上传的固件镜像,绕过CRC校验,执行任意代码或造成拒绝服务(DoS)。
CVSS Information
N/A
Vulnerability Type
N/A