Main Vulnerability Database Vulnerabilities #VU74817

#VU74817 OS Command Injection in RAX30 and RAXE300 - CVE-2023-27356

Published: April 11, 2023 / Updated: May 2, 2023

Vulnerability identifier: #VU74817

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2023-27356

CWE-ID: CWE-78

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vulnerable software:
RAX30
RAXE300

Software vendor:
NETGEAR

Description

The vulnerability allows a remote user to execute arbitrary shell commands on the target system.

The vulnerability exists due to improper input validation within the logCtrl action. A remote user on the local network can pass specially crafted data to the application and execute arbitrary OS commands on the target system.

Remediation

Install updates from vendor's website.

External links

https://kb.netgear.com/000065618/Security-Advisory-for-Post-authentication-Command-Injection-on-Some-Routers-PSV-2022-0350
https://www.zerodayinitiative.com/advisories/ZDI-23-503/

#VU74817 OS Command Injection in RAX30 and RAXE300 - CVE-2023-27356

Description

Remediation

External links

Please verify you're human