PT-2025-13828 · NetGear · Netgear Wnr854T

Published

2024-11-16

Updated

2025-03-31

CVE-2024-54805

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Netgear WNR854T version 1.5.2

Description The issue allows an attacker to perform Command Injection. This can be achieved by sending a specially crafted request to the "post.cgi" endpoint, updating the get email parameter in nvram. After updating this parameter, an attacker can visit the "send log.cgi" endpoint, which uses the parameter in a system call, allowing command execution.

Recommendations For Netgear WNR854T version 1.5.2, as a temporary workaround, consider restricting access to the "post.cgi" and "send log.cgi" endpoints until a patch is available. Avoid using the get email parameter in the "post.cgi" endpoint until the issue is resolved.

Exploit

Fix

Code Injection

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94CWE-78

Related Identifiers

BDU:2025-03672

CVE-2024-54805

Affected Products

Netgear Wnr854T

PT-2025-13828 · NetGear · Netgear Wnr854T

CVE-2024-54805

Weakness Enumeration

Related Identifiers

Affected Products

References · 5