Unrated severityNVD Advisory· Published Jan 10, 2025· Updated Apr 7, 2026

NETGEAR DGN setup.cgi OS Command Injection

CVE-2024-12847

Description

NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending crafted HTTP requests to the setup.cgi endpoint. This vulnerability has been observed to be exploited in the wild since at least 2017 and specifically by the Shadowserver Foundation on 2025-02-06 UTC.

Affected products

NETGEAR/DGN1000v5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/25978mitreexploit
www.exploit-db.com/exploits/43055mitreexploit
seclists.org/bugtraq/2013/Jun/8mitrethird-party-advisorytechnical-description
vulncheck.com/advisories/netgear-dgnmitrethird-party-advisory

News mentions

RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning Exploits
Trend Micro Research · Oct 9, 2025

cvss	0.000
epss	0.059
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000