Stack Overflow Vulnerability in Netgear EX6100v1, CAX80, and DC112A: Arbitrary Code Execution without Authentication

Stack Overflow Vulnerability in Netgear EX6100v1, CAX80, and DC112A: Arbitrary Code Execution without Authentication

CVE-2022-24655 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A stack overflow vulnerability exists in the upnpd service in Netgear EX6100v1 201.0.2.28, CAX80 2.1.2.6, and DC112A 1.0.0.62, which may lead to the execution of arbitrary code without authentication.

Learn more about our Web Application Penetration Testing UK.