Home Embedded Vulns General Vulns

CVE-2012-6297

HIGH 8.8

Our Analysis: Environment Specific

Our model has classified this vulnerability as relevant to Environment Specific Systems, helping your team prioritize efforts effectively.

Published Date February 6, 2020
Last Modified November 21, 2024
CVSS Vector Not Available

Description

Command Injection vulnerability exists via a CSRF in DD-WRT 24-sp2 from specially crafted configuration values containing shell meta-characters, which could let a remote malicious user cause a Denial of Service.

Potentially Affected Vendors