CVE-2021-41383

setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands via shell metacharacters in the ntp_server field.

Summary:

setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands via shell metacharacters in the ntp_server field.

Reference Links(if available):

  • https://j-o-e-l-s.github.io/2021/09/15/Hacking-The-Netgear-R6020.html
  • CVSS Score (if available)

    v2: / LOW

    v3: /

    Links to Exploits(if available)