Netgear EX8000 V1.0.0.126 is vulnerable to Command Injection via the Iface parameter in the action_wireless function.
An attacker sends a crafted network request containing a malicious payload in the Iface parameter handled by the action_wireless function. Input data is not properly validated or sanitized before being passed to the system interpreter, which allows injection and execution of arbitrary commands at the operating system level of the device. The attack does not require authentication or user interaction, and the vulnerability is remotely accessible over the network.
An attacker can gain full control over the device — read confidential configuration data, modify network settings, and potentially use the device as an entry point for further lateral movement in the network.
Apply patches available from the manufacturer according to references. Until firmware is updated, it is recommended to restrict access to the device management interface only to trusted hosts and isolate the device in the network.
Netgear EX8000 with firmware version V1.0.0.126
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HNetgear Ex8000
HWNetgearwszystkie wersjeNetgear Ex8000 Firmware
OSNetgear1.0.0.126
Related vulnerabilities
Command injection w Netgear EX8000 via funkcja switch_status
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7800 b...
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects EX6200v...
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 befo...
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D7800 b...