CVE-2023-39550

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 7, 2023

Updated: Aug 9, 2023

CWE ID 120

Summary

CVE-2023-39550: Multiple buffer overflows have been identified in Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 routers. The vulnerability lies in the check_auth function and can be exploited by sending maliciously crafted http_passwd and http_username parameters, potentially leading to arbitrary code execution or denial of service attacks. This issue poses a serious threat to network security and requires immediate patching.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Netgear, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sOVw08
https://www.cve.org/CVERecord?id=CVE-2023-39550
https://nvd.nist.gov/vuln/detail/CVE-2023-39550

Back to Vulnerability Database

CVE-2023-39550

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations