CVE-2025-4121 | Netgear JWNR2000v2 1.0.0.11 cmd_wireless host command injection

Inserito da Angelo Barbosa | Apr 30, 2025 | CVE

A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been declared as critical. Affected by this vulnerability is the function cmd_wireless. The manipulation of the argument host leads to command injection.

This vulnerability is known as CVE-2025-4121. The attack can be launched remotely. There is no exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-4121 | Netgear JWNR2000v2 1.0.0.11 cmd_wireless host command injection

Post correlati

CVE-2024-28892 | GoCast 1.1.3 HTTP Request name os command injection (TALOS-2024-1960)

CVE-2024-13091 | WPBot Pro Chatbot Plugin up to 13.5.4 on WordPress unrestricted upload

CVE-2024-9703 | Arconix Shortcodes Plugin up to 2.1.12 on WordPress Shortcode cross site scripting

CVE-2024-45335 | Trend Micro Antivirus One up to 3.10.5 Scan Detection Privilege Escalation