Command Injection Vulnerability in NETGEAR WNR2000v4 Version 1.0.0.70

Command Injection Vulnerability in NETGEAR WNR2000v4 Version 1.0.0.70

CVE-2023-50089 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication.

Learn more about our Web Application Penetration Testing UK.