VYPR
Unrated severityNVD Advisory· Published Feb 6, 2020· Updated Aug 6, 2024

CVE-2012-6297

CVE-2012-6297

Description

Command Injection vulnerability exists via a CSRF in DD-WRT 24-sp2 from specially crafted configuration values containing shell meta-characters, which could let a remote malicious user cause a Denial of Service.

Affected products

2
  • DD-WRT/DD-WRTdescription
  • Dd Wrt/Dd Wrtllm-fuzzy
    Range: =24-sp2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.