CVSS: 10.0EPSS: 96%CPEs: 2EXPL: 1CVE-2017-6077 – NETGEAR DGN2200 Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-6077
ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping_IPAddr field of an HTTP POST request. ping.cgi en dispositivos NETGEAR DGN2200 con firmware hasta la versión 10.0.0.50 permite a usuarios remotos autenticados ejecutar comandos de SO arbitrarios a través de metacaracteres shell en el campo ping_IPAddr de una solicitud HTTP POST. Netgear DGN2200 versions 1, 2, 3, and 4 suffer from a non-administrative authenticated remote command execution vulnerability. NETGEAR DGN2200 wireless routers contain a vulnerability that allows for remote code execution. • https://www.exploit-db.com/exploits/41394 http://www.securityfocus.com/bid/96408 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.8EPSS: 13%CPEs: 4EXPL: 1CVE-2016-5649 – Netgear DGN2200 and DGND3700 disclose the administrator password
https://notcve.org/view.php?id=CVE-2016-5649
A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V1.0.0.50_7.0.50, and DGND3700, version DGND3700-V1.0.0.17_1.0.17, which can allow a remote attacker to access this page without any authentication. When processed, it exposes the admin password in clear text before it gets redirected to absw_vfysucc.cgia. An attacker can use this password to gain administrator access to the targeted router's web interface. Hay una vulnerabilidad en la página "BSW_cxttongr.htm" de Netgear DGN2200, en su versión DGN2200-V1.0.0.50_7.0.50 y DGND3700, en su versión DGND3700-V1.0.0.17_1.0.17, que puede permitir que un atacante remoto acceda a esta página sin ningún tipo de autenticación. Al procesarse, expone la contraseña de administrador en texto claro antes de que se redirija a absw_vfysucc.cgia. • http://packetstormsecurity.com/files/152675/Netgear-DGN2200-DGND3700-Admin-Password-Disclosure.html https://packetstormsecurity.com/files/140342/Netgear-DGN2200-DGND3700-WNDR4500-Information-Disclosure.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-319: Cleartext Transmission of Sensitive Information •