cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-43654,https://securityvulnerability.io/vulnerability/CVE-2022-43654,Remote Code Execution Vulnerability in NETGEAR CAX30S Routers,"A command injection vulnerability exists within the NETGEAR CAX30S router, specifically concerning the handling of the token parameter in the sso.php endpoint. This vulnerability arises from insufficient validation of user-supplied input, allowing attackers with network access to execute arbitrary code as the root user. Exploiting this flaw does not require any form of authentication, making affected routers an accessible target for potential threats. Users of the NETGEAR CAX30S should ensure their devices are updated to mitigate risks associated with this vulnerability.",Netgear,Cax30s,8.8,HIGH,0.0004900000058114529,false,,false,false,false,,,false,false,,2024-05-07T22:54:59.091Z,0