First published: Mon Oct 14 2024(Updated: )
Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the wan_dns1_pri parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
NETGEAR EX6120 firmware | <=1.0.0.68 | |
Netgear EX6120 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-35518 is classified as a high-severity vulnerability due to the potential for command injection.
To fix CVE-2024-35518, users should upgrade to a patched version of the firmware beyond v1.0.0.68.
CVE-2024-35518 affects users of the Netgear EX6120 with firmware version 1.0.0.68 or lower.
CVE-2024-35518 is a command injection vulnerability identified in the genie_fix2.cgi script.
Exploitation of CVE-2024-35518 may allow an attacker to execute arbitrary commands on the vulnerable Netgear EX6120 device.