Unrated severityNVD Advisory· Published Feb 12, 2020· Updated Aug 4, 2024
CVE-2020-8946
CVE-2020-8946
Description
Netis WF2471 v1.2.30142 devices allow an authenticated attacker to execute arbitrary OS commands via shell metacharacters in the /cgi-bin-igd/sys_log_clean.cgi log_3g_type parameter.
Affected products
2- Netis/WF2471description
Patches
Vulnerability mechanics
References
1- sku11army.blogspot.com/2020/02/netis-authenticated-rce-on-wf2471.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.