Date: February 26th, 2021 Vulnerability Title: (Pwn2Own) NETGEAR R7800 apply_save.cgi rc_service Command Injection Remote Code Execution Vulnerability ZDI IDs: ZDI-21-262, ZDI-CAN-12355 CVE ID: CVE-2021-27256 CVSS Score: 8.8 (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) Affected Vendors: NETGEAR Affected Products: R7800 Vulnerability Details: - Allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800. - Authentication can be bypassed. - Flaw in handling of the parameter in . - Lack of proper validation of user-supplied string before executing system call. Additional Details: NETGEAR has issued an update. More details available at: Link to NETGEAR advisory Disclosure Timeline: - 2020-12-31: Vulnerability reported to vendor - 2021-02-26: Coordinated public release of advisory Credit: Takeshi