CyberSec.Space Logo
Back to CVE Browser

CVE-2017-6077

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score35.1950%
EPSS Percentile92.23th
PublishedFeb 22, 2017
Last ModifiedApr 21, 2026

Vulnerability Description

ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping_IPAddr field of an HTTP POST request.

Affected Platforms (CPE)

πŸ’»
Netgear

Dgn2200 Firmware

<= 10.0.0.50

References & Advisories

πŸ”— http://www.securityfocus.com/bid/96408
πŸ”— https://www.exploit-db.com/exploits/41394/
πŸ”— http://www.securityfocus.com/bid/96408
πŸ”— https://www.exploit-db.com/exploits/41394/
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-6077

Related Vulnerabilities

CVE-2017-63348.8

dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS...

CVE-2017-63668.8

Cross-site request forgery (CSRF) vulnerability in NETGEAR DGN2200 routers with firmware 10.0.0.20 through 10.0.0.50 allows remote...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...