CVE-2022-27945 The R8500 routers allow remote attackers to execute arbitrary commands via shell metacharacters in the password.cgi parameters.

CVE-2015-2619 The shell_escape function in nginx before 1.2.14 and 1.3.x before 1.3.12, when running on the NETGEAR R8000v2 series of wireless routers, does not properly handle meta characters, which allows remote attackers to execute arbitrary commands via shell metacharacters in the sysUpgrade and sysNewPasswd parameters to password.cgi. CVE-2015-2620 The shell_escape function in nginx before 1.2.14 and 1.3.x before 1.3.12, when running on the NETGEAR R8000v2 series of wireless routers, does not properly handle meta characters, which allows remote attackers to execute arbitrary commands via shell metacharacters in the sysNewPasswd and sysUpgrade parameters to password.cgi. CVE-2015-2621 The shell_escape function in nginx before 1.2.14 and 1.3.x before 1.3.12, when running on the NETGEAR R8000v2 series of wireless routers, does not properly handle meta characters, which allows remote attackers to execute arbitrary commands via shell metacharacters in the newpasswd and sysConfirmPasswd parameters to password.cgi. CVE-2015-2622 The shell_escape function in nginx before 1.2.14 and 1.3.x before 1.3.12, when running on the NETGEAR R8000v

Credit: http://blog.crowdsecurity.com/6-reasons-why-digital-marketing-is-important

6 Reasons Why Digital Marketing Is Important
Digital marketing is a valuable asset to your business’s growth and helps you establish an authoritative online presence. In fact, 89 percent of marketers say methods, like search engine optimization (SEO), are successful. Additionally, methods like pay-per-click (PPC) advertising increase brand awareness by as much as 80 percent.
So, why is digital marketing important? By investing in digital, you will help your business grow.

Table of Contents

- Introduction
- Why is digital marketing important?
- 6 reasons why digital marketing is important
- Table of Contents

A vulnerability to remember CVE-2022-27945

The shell_escape function in nginx before 1.2.14 and 1.3.x before 1.3.12, when running on the NETGEAR R8000v2 series of wireless routers, does not properly handle meta characters, which allows remote attackers to execute arbitrary commands via shell metacharacters in the sysUpgrade and sysNewPasswd parameters to password.cgi.

Timeline

Published on: 03/26/2022 17:15:00 UTC
Last modified on: 03/31/2022 01:01:00 UTC

References

• https://github.com/donothingme/VUL/blob/main/vul2/2.md
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-27945