Cybersecurity Alerts

← Back to Cybersecurity Alerts

CVE-2017-6334

NETGEAR | DGN2200 DevicesAdded 2022-03-25Remediation Deadline 2022-04-15

NETGEAR DGN2200 Devices OS Command Injection Vulnerability

dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands

Required Action

The impacted product is end-of-life and should be disconnected if still in use.

Weakness Classification

CWE-78

References

https://nvd.nist.gov/vuln/detail/CVE-2017-6334