Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Netgear WNR854T 1.5.2 (North America), the UPNP service is vulnerable to command injection in the function addmap_exec which parses the NewInternalClient parameter of the AddPortMapping SOAPAction into a system call without sanitation. An attacker can send a specially crafted SOAPAction request for AddPortMapping via the router's WANIPConn1 service to achieve arbitrary command execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NETGEAR WNR854T 安全漏洞
Vulnerability Description
NETGEAR WNR854T是美国网件(NETGEAR)公司的一款无线路由器。 NETGEAR WNR854T 1.5.2版本存在安全漏洞,该漏洞源于命令注入,可能导致通过特制SOAPAction请求执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A