CVE-2025-28219

Published Mar 28, 2025

Last updated 8 days ago

Overview

Description
Netgear DC112A V1.0.0.64 has an OS command injection vulnerability in the usb_adv.cgi, which allows remote attackers to execute arbitrary commands via parameter "deviceName" passed to the binary through a POST request.
Source
cve@mitre.org
NVD status
Awaiting Analysis

Social media

Hype score
Not currently trending

  1. New post from https://t.co/uXvPWJy6tj (CVE-2025-28219 | Netgear DC112A up to 1.0.0.64 HTTP POST Request usb_adv.cgi deviceName os command injection) has been published on https://t.co/DRYadbbTrl

    @WolfgangSesin

    28 Mar 2025

    1 Impression

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References