Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the wan_gateway parameter at genie_fix2.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request.
2024-11-05T15:15:26.833
2025-05-02T15:39:38.770
Analyzed
CVSSv3.1: 8.0 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | netgear | r8500_firmware | 1.0.2.160 | Yes |
| Hardware | netgear | r8500 | - | No |