METASPLOIT-modules/exploits/linux/upnp/belkin_wemo_upnp_exec.rb

METASPLOIT ruby WORKING POC
Exploit for CVE-2019-12780 - Belkin Crock-pot Smart Slow Cooker Wi... - OS Command Injection
AI Analysis

This Metasploit module exploits a command injection vulnerability in Belkin Wemo UPnP devices via the SmartDevURL argument in the SetSmartDevInfo action. It supports both in-memory command execution and a Linux dropper for MIPSLE-based devices.

Attack Type
RCE
Complexity
moderate
Reliability
reliable
MITRE ATT&CK
T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution
Loading exploit code...
Download ZIP Password: eip
Source
Platform Metasploit
Type poc
Platform unix
Language ruby
Rank excellent
Files 1
Authors
wvu nstarke phikshun
Vulnerability
CVE-2019-12780
Belkin Crock-pot Smart Slow Cooker Wi... - OS Command Injection
CRITICAL
CVSS 9.8