CVE-2024-22729
CRITICAL EXPLOITED NUCLEINetis MW5360 V1.0.1.3031 - Command Injection
Title source: nucleiDescription
NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter on the login page.
Exploits (1)
metasploit
WORKING POC
EXCELLENT
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/netis_unauth_rce_cve_2024_22729.rb
Nuclei Templates (1)
Netis MW5360 V1.0.1.3031 - Command Injection
CRITICALby pussycat0x
Shodan:
title:"netis router"
Scores
CVSS v3
9.8
EPSS
0.9117
EPSS Percentile
99.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
VulnCheck KEV
2024-06-27
CWE
CWE-77
Status
published
Products (1)
netis-systems/mw5360_firmware
1.0.1.3031
Published
Jan 25, 2024
Tracked Since
Feb 18, 2026