FysacNov 14, 2022

Nice write-up for CVE-2020-27861 from @hypr (I found the vuln): https://blog.coffinsec.com/research/2022/07/02/orbi-nday-exploit-cve-2020-27861.html

My exploit was different, but I liked this approach to getting around the *really annoying* constraints, too.

nday exploit: netgear orbi unauthenticated command injection (CVE-2020-27861)

rediscovering and developing a weaponized exploit for a command injection vulnerability in Orbi wifi systems that was reported and patched last year.

hyprblog
Show threadhyper 
@fysac awesome find! would love to hear about you dealt with all that nonsense
Nov 14, 2022 at 11:37pmWeb
Show threadFysacNov 15, 2022
@hypr Thanks! Wrote this explaining my approach: https://gist.github.com/Fysac/0bdfcf12e645270e8423673094f3539e
CVE-2020-27861.md

GitHub Gist: instantly share code, notes, and snippets.

Gist
Show threadhyper Nov 15, 2022
@fysac very nice with use of the UA logging to turn the log into a script 👏🏽