CVE-2018-1144

Description

A remote unauthenticated user can execute commands as root in the Belkin N750 using firmware version 1.10.22 by sending a crafted HTTP request to proxy.cgi.

Affected products

• belkin / N750 DB Wi-Fi Dual-Band N+ Gigabit Router (F9K1103)Firmware 1.10.22? – Firmware 1.10.22?

References

• MISChttps://www.tenable.com/security/research/tra-2018-08