CyberSec.Space Logo
返回 CVE 浏览器

CVE-2017-6077

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score35.1950%
EPSS Percentile92.23th
Published2017年2月22日
Last Modified2026年4月21日

Vulnerability Description

ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping_IPAddr field of an HTTP POST request.

Affected Platforms (CPE)

💻
Netgear

Dgn2200 Firmware

<= 10.0.0.50

References & Advisories

🔗 http://www.securityfocus.com/bid/96408
🔗 https://www.exploit-db.com/exploits/41394/
🔗 http://www.securityfocus.com/bid/96408
🔗 https://www.exploit-db.com/exploits/41394/
🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-6077

相关漏洞威胁

CVE-2017-63348.8

dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS...

CVE-2017-63668.8

Cross-site request forgery (CSRF) vulnerability in NETGEAR DGN2200 routers with firmware 10.0.0.20 through 10.0.0.50 allows remote...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...