Lucene search

PRIOn knowledge basePRION:CVE-2017-6077

HistoryFeb 22, 2017 - 11:59 p.m.

Cross site request forgery (csrf)

2017-02-2223:59:00

PRIOn knowledge base

www.prio-n.com

9.3 High

AI Score

Confidence

High

0.967 High

EPSS

Percentile

99.7%

JSON

ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping_IPAddr field of an HTTP POST request.

CPENameOperatorVersion
dgn2200_firmwarele10.0.0.50

CPE	Name	Operator	Version
	dgn2200_firmware	le	10.0.0.50

References

www.securityfocus.com/bid/96408

www.exploit-db.com/exploits/41394/