CVE-2024-50993

Publication date

2024-11-05 00:00:00

Family

mitre

State

PUBLISHED

Description

Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the sysNewPasswd parameter at admin_account.cgi. This vulnerability allows attackers to execute arbitrary OS commands via a crafted request.