CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Netgear: >> R8500 Firmware >> 1.0.2.158 Security Vulnerabilities

CVE-2022-27945

NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi.

CVSS Score

8.8

EPSS Score

0.064

Published

2022-03-26

CVE-2022-27946

NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to admin_account.cgi.

CVSS Score

8.8

EPSS Score

0.014

Published

2022-03-26

CVE-2022-27947

NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the ipv6_fix.cgi ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, or ipv6_lan_length parameter.

CVSS Score

8.8

EPSS Score

0.064

Published

2022-03-26

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved