Netcore Products Command Injection Vulnerability in Query String Handler

Vulnerability

A critical command injection vulnerability has been identified in multiple Netcore router and wireless access point models, including the NBR1005GPEV2, B6V2, COVER5, NAP830, NAP930, NBR100V2, NBR200V2, and POWER13, all through version 20250508. The vulnerability resides in the Query String Handler component, specifically within the file '/www/cgi-bin/'. The issue arises from inadequate filtering of parameters in several scripts, allowing attackers to execute arbitrary commands that could harm the device's system.

Impact

Exploitation of this vulnerability allows for unauthorized command execution on the affected device, with potential commands like 'rm -rf /' being used to disrupt the router's operating system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netcore Products Command Injection Vulnerability in Query String Handler

Vulnerability

Impact

Affected Products

Netcore NBR1005GPEV2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating