#VU75647 Configuration in RAX30 - CVE-2023-27360


Vulnerability identifier: #VU75647

Vulnerability risk: Medium

CVSSv4.0: 6.1 [CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-27360

CWE-ID: CWE-16

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
RAX30
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: NETGEAR

Description

The issue may allow a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the misconfiguration of the lighttpd HTTP server. A remote user on the local network can execute arbitrary code on the target device.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

RAX30: before 1.0.10.94


External links
https://www.zerodayinitiative.com/advisories/ZDI-23-496/
https://kb.netgear.com/000065559/Security-Advisory-for-Multiple-Vulnerabilities-on-the-RAX30-PSV-2022-0352


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability