CVE-2024-35518

MEDIUM Year: 2024
CVSS v3 Score
6.8
Medium
Weakness Type
CWE-77
View all →

Vulnerability Description

Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the wan_dns1_pri parameter.

Related Vulnerabilities

CVE-2016-9337

MEDIUM
CVSS:6.8(Medium)

An issue was discovered in Tesla Motors Model S automobile, all firmware versions before version 7.1 (2.36.31) with web browser functionality enabled. The vehicle's Gateway ECU is susceptible to comma...

CWE-772016

CVE-2019-20688

MEDIUM
CVSS:6.8(Medium)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D6100 before 1.0.0.63, EX2700 before 1.0.1.48, EX6100v2 b...

CWE-772019

CVE-2019-20689

MEDIUM
CVSS:6.8(Medium)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6000 before 1.0.0.75, D6100 before 1.0.0.63, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1.76, EX6150v...

CWE-772019

CVE-2019-20718

MEDIUM
CVSS:6.8(Medium)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.48, D6400 before 1.0.0.82, D7000v2 before 1.0.0.52, D8500 before 1.0.3.43, R6250 bef...

CWE-772019

CVE-2019-20722

MEDIUM
CVSS:6.8(Medium)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7800 before 1.0.1.44, DM200 before 1.0.0.58, R7500v2 before 1.0.3.38, R7800 before 1.0.2.52, R8900 bef...

CWE-772019

CVE-2019-20724

MEDIUM
CVSS:6.8(Medium)

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D6100 before 1.0.0.63, D7800 before 1.0.1.44, R7500v2 bef...

CWE-772019