Check Point Reference: |
CPAI-2023-1246 |
Date Published: |
3 Dec 2023 |
Severity: |
High
|
Last Updated: |
Sunday 03 December, 2023 |
Source: |
|
Industry Reference: | CVE-2023-44450
|
Protection Provided by: |
Security Gateway R81, R80, R77, R75 |
Who is Vulnerable? | Netgear ProSAFE NMS300 prior to 1.7.0.31 |
Vulnerability Description |
An SQL injection vulnerability exists for Netgear ProSafe NMS300. This vulnerability is due to improper input validation for the getNodesByTopologyMapSearch component.Successfully exploiting this vulnerability could result in SQL injection or, in the worst case, remote code execution in the context of SYSTEM. |