Security Advisory

CVE-2025-28219

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-28 00:00:00

Last updated 2025-04-21 19:00:08

Assigner mitre

State PUBLISHED

Description

Netgear DC112A V1.0.0.64 has an OS command injection vulnerability in the usb_adv.cgi, which allows remote attackers to execute arbitrary commands via parameter "deviceName" passed to the binary through a POST request.

← Browse all CVEs View on cve.org ↗