NETGEAR DGN2200 Devices OS Command Injection Vulnerability

Known Exploited Vulnerability

CVE-2017-6334, NETGEAR DGN2200 Devices OS Command Injection Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands.

The following remediation steps are recommended / required by April 15, 2022: The impacted product is end-of-life and should be disconnected if still in use.