CVE-2024-12847 | NETGEAR DGN1000 1.1.00.46 HTTP Request setup.cgi authentication bypass

Posted by Angelo Barbosa | Jan 10, 2025 | CVE

A vulnerability classified as very critical has been found in NETGEAR DGN1000 1.1.00.46. This affects an unknown part of the file setup.cgi of the component HTTP Request Handler. The manipulation leads to authentication bypass using alternate channel.

This vulnerability is uniquely identified as CVE-2024-12847. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-12847 | NETGEAR DGN1000 1.1.00.46 HTTP Request setup.cgi authentication bypass

Related Posts

CVE-2024-34244 | libmodbus 3.1.10 modbus_write_bits out-of-bounds

CVE-2024-24713 | WP Auto Listings Plugin up to 2.6.5 on WordPress cross site scripting

CVE-2024-6215 | SourceCodester Food Ordering Management System up to 1.0 view-ticket-admin.php id sql injection

CVE-2024-33394 | KubeVirt up to 1.2.0 Token Local Privilege Escalation