Vulnerability in Netgear WN604 Could Allow Remote Code Execution
CVE-2024-7153

Currently unrated

Key Information:

Vendor: Netgear
Status: Wn604
Vendor: CVE Published:; 27 July 2024

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A vulnerability classified as problematic has been found in Netgear WN604 up to 20240719. Affected is an unknown function of the file siteSurvey.php. The manipulation leads to direct request. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-272556. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Affected Version(s)

WN604 20240719

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-7153 - Proof of Concept

References

https://vuldb.com/?id.272556

vdb-entry

https://vuldb.com/?ctiid.272556

signaturepermissions-required

https://vuldb.com/?submit.377056

third-party-advisory

Timeline

🟡
Public PoC available
Jul 27, 2024
👾
Exploit known to exist
Jul 27, 2024
Vulnerability published
Jul 27, 2024
Vulnerability Reserved
Jul 27, 2024

Credit

wiki (VulDB User)