CVE-2024-35517 | Netgear XR1000 1.0.0.64 usb_remote_smb_conf.cgi share_name command injection

Inserito da Angelo Barbosa | Ott 12, 2024 | CVE

A vulnerability was found in Netgear XR1000 1.0.0.64. It has been classified as critical. Affected is an unknown function of the file usb_remote_smb_conf.cgi. The manipulation of the argument share_name leads to command injection.

This vulnerability is traded as CVE-2024-35517. The attack can only be done within the local network. There is no exploit available.

CVE-2024-35517 | Netgear XR1000 1.0.0.64 usb_remote_smb_conf.cgi share_name command injection

Post correlati

CVE-2024-35272 | Microsoft unknown vulnerability

CVE-2024-3732 | GeoDirectory Plugin up to 2.3.48 on WordPress Shortcode gd_single_tabs cross site scripting

CVE-2023-51805 | TDuckCLoud tduck-platform 4.0 FormDataMysqlService.java search getFormKey information disclosure (Issue 22)

CVE-2021-22280 | B&R Industrial Automation Automation Studio up to 4.11 Local Privilege Escalation