9.3

CVE-2016-6277

Warnung
Exploit
NETGEAR R6250 before 1.0.4.6.Beta, R6400 before 1.0.1.18.Beta, R6700 before 1.0.1.14.Beta, R6900, R7000 before 1.0.7.6.Beta, R7100LG before 1.0.0.28.Beta, R7300DST before 1.0.0.46.Beta, R7900 before 1.0.1.8.Beta, R8000 before 1.0.3.26.Beta, D6220, D6400, D7000, and possibly other routers allow remote attackers to execute arbitrary commands via shell metacharacters in the path info to cgi-bin/.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NetgearD6220 Firmware Version <= 1.0.0.22
   NetgearD6220 Version-
NetgearD6400 Firmware Version <= 1.0.0.56
   NetgearD6400 Version-
NetgearR6250 Firmware Version <= 1.0.4.6_10.1.12
   NetgearR6250 Version-
NetgearR6400 Firmware Version <= 1.0.1.18
   NetgearR6400 Version-
NetgearR6700 Firmware Version <= 1.0.1.14
   NetgearR6700 Version-
NetgearR6900 Firmware Version <= 1.0.1.14
   NetgearR6900 Version-
NetgearR7000 Firmware Version <= 1.0.7.2_1.1.93
   NetgearR7000 Version-
NetgearR7100lg Firmware Version <= 1.0.0.28
   NetgearR7100lg Version-
NetgearR7300dst Firmware Version <= 1.0.0.46
   NetgearR7300dst Version-
NetgearR7900 Firmware Version <= 1.0.1.8
   NetgearR7900 Version-
NetgearR8000 Firmware Version <= 1.0.3.26
   NetgearR8000 Version-

07.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

NETGEAR Multiple Routers Remote Code Execution Vulnerability

Schwachstelle

NETGEAR confirmed multiple routers allow unauthenticated web pages to pass form input directly to the command-line interface, permitting remote code execution.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 99.78% 1
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

http://kb.netgear.com/000036386/CVE-2016-582384
Patch
Vendor Advisory
http://packetstormsecurity.com/files/155712/Netgear-R6400-Remote-Code-Execution.html
Third Party Advisory
Exploit
VDB Entry
http://www.securityfocus.com/bid/94819
Third Party Advisory
Broken Link
VDB Entry
http://www.sj-vs.net/a-temporary-fix-for-cert-vu582384-cwe-77-on-netgear-r7000-and-r6400-routers/
Third Party Advisory
Broken Link
Mitigation
https://kalypto.org/research/netgear-vulnerability-expanded/
Third Party Advisory
Exploit
Broken Link
https://www.exploit-db.com/exploits/40889/
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/41598/
Third Party Advisory
Exploit
VDB Entry
https://www.kb.cert.org/vuls/id/582384
Third Party Advisory
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-6277
US Government Resource