What is CVE-2013-2751?

CVE-2013-2751 is a vulnerability in Netgear Raidiator, classified under Code Injection. Published 2013-12-12.

Is CVE-2013-2751 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Netgear Raidiator

CVE-2013-2751

Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to execute arbitrary Perl code via a crafted request, re…

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.835 (99.3th percentile) — read the EPSS interpretation.

Affected products

Netgear Raidiator
N/a — versions n/a

Weakness classification (CWE)

CWE-94 — Code Injection

Public proof-of-concept exploits

rapid7/metasploit-framework

References

cve@mitre.org (VDB Entry, Third Party Advisory, x_refsource_MISC)
cve@mitre.org (Third Party Advisory, x_refsource_MISC)
cve@mitre.org (Patch, x_refsource_MISC, Vendor Advisory)
cve@mitre.org (Third Party Advisory, x_refsource_MISC)
98826 (x_refsource_OSVDB, vdb-entry, Broken Link)
29815 (Exploit, exploit, Third Party Advisory, VDB Entry, x_refsource_EXPLOIT-DB)

Frequently asked questions

What is CVE-2013-2751?: CVE-2013-2751 is a vulnerability in Netgear Raidiator, classified under Code Injection. Published 2013-12-12.
Is CVE-2013-2751 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.