Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.146186
Category:Web application abuses
Title:NETGEAR Smart Cloud Switch Command Injection Vulnerability (PSV-2021-0071)
Summary:Multiple NETGEAR Smart Cloud Switch devices are prone to an; unauthenticated command injection vulnerability.
Description:Summary:
Multiple NETGEAR Smart Cloud Switch devices are prone to an
unauthenticated command injection vulnerability.

Vulnerability Insight:
An unauthenticated attacker might inject commands via the
vulnerable /sqfs/lib/libsal.so.0.0 library used by a CGI application.

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2021-33514
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.