216.73.216.86

CVE-2024-35519

· Published 14/10/2024 22:15 · Modified 16/10/2024 17:17

Labels: CVE-2024-35519 2024-10-14CVE-2024-35519CWE-77[email protected]

Essential information

Published
14/10/2024 22:15
Modified
16/10/2024 17:17
Author
Creator
CVSS
6.8 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable to command injection in operating_mode.cgi via the ap_mode parameter.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
netgear / ex3700 firmware cpe:2.3:o:netgear:ex3700_firmware:*:*:*:*:*:*:*:*
netgear / ex3700 cpe:2.3:h:netgear:ex3700:-:*:*:*:*:*:*:*
netgear / ex6100 firmware cpe:2.3:o:netgear:ex6100_firmware:*:*:*:*:*:*:*:*
netgear / ex6100 cpe:2.3:h:netgear:ex6100:-:*:*:*:*:*:*:*
netgear / ex6120 firmware cpe:2.3:o:netgear:ex6120_firmware:*:*:*:*:*:*:*:*
netgear / ex6120 cpe:2.3:h:netgear:ex6120:-:*:*:*:*:*:*:*

References