Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-35517

Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_remote_smb_conf.cgi via the share_name parameter.

Published

2024-10-11T22:15:03.930

Last Modified

2025-03-13T17:15:31.850

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.4 (HIGH)

Weaknesses
  • Type: Primary
    CWE-77
  • Type: Secondary
    CWE-77
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System netgear xr1000_firmware 1.0.0.64 Yes
Hardware netgear xr1000 - No
References