CVE-2018-1144: OS Command Injection
First published: Thu Apr 19 2018(Updated: )
A remote unauthenticated user can execute commands as root in the Belkin N750 using firmware version 1.10.22 by sending a crafted HTTP request to proxy.cgi.
Credit: vulnreport@tenable.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Belkin N750 Firmware | =1.10.22 | |
| Belkin N750 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-1144?
CVE-2018-1144 is a vulnerability that allows a remote unauthenticated user to execute commands as root in the Belkin N750 router with firmware version 1.10.22.
What is the severity rating of CVE-2018-1144?
CVE-2018-1144 has a severity rating of 9.8, which is considered critical.
How can the vulnerability in Belkin N750 be exploited?
The vulnerability in Belkin N750 with firmware version 1.10.22 can be exploited by sending a crafted HTTP request to proxy.cgi.
Is Belkin N750 the only affected software?
No, the Belkin N750 router with firmware version 1.10.22 is the only affected software. Other versions or models are not vulnerable.
What is the Common Weakness Enumeration (CWE) ID for CVE-2018-1144?
The CWE ID for CVE-2018-1144 is 78.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/belkin
- canonical/belkin n750 firmware
- version/belkin n750 firmware/1.10.22
- canonical/belkin n750