Published: 29/03/2023 Updated: 05/04/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SOAP requests. When parsing the SOAPAction header, the process does not properly validate the length of user-supplied data prior to copying it to a buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-15692.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear r6400_firmware
netgear r6700_firmware
netgear r6900p_firmware
netgear r7000_firmware
netgear r7000p_firmware
netgear r7850_firmware
netgear r7900p_firmware
netgear r7960p_firmware
netgear r8000_firmware
netgear r8000p_firmware
netgear r8500_firmware
netgear rax200_firmware
netgear rax75_firmware
netgear rax80_firmware
netgear rs400_firmware
netgear r7100lg_firmware
netgear wndr3400_firmware
netgear wnr3500l_firmware
netgear xr300_firmware
netgear dc112a_firmware
netgear d6220_firmware
netgear d6400_firmware
netgear ex3700_firmware
netgear ex3800_firmware
netgear ex6120_firmware
netgear ex6130_firmware
netgear d7000v2_firmware

CWE-120 https://kb.netgear.com/000064720/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Multiple-Products-PSV-2021-0323 https://www.zerodayinitiative.com/advisories/ZDI-22-519/https://nvd.nist.gov https://www.zerodayinitiative.com/advisories/ZDI-22-519/

CVE-2022-27643

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect