Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-48725

Published: 07/03/2024 Updated: 08/03/2024
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 0

Vulnerability Summary

A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule() functionality of Netgear RAX30 1.0.11.96 and 1.0.7.78. A specially crafted HTTP request can lead to code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.

Vendor Advisories

Check Point Security Alerts: Netgear RAX30 Buffer Overflow (CVE-2023-48725)
Check Point Reference: CPAI-2023-1616 Date Published: 11 Apr 2024 Severity: High ...

References

CWE-121https://talosintelligence.com/vulnerability_reports/TALOS-2023-1887https://kb.netgear.com/000066037/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-the-RAX30-PSV-2023-0160https://nvd.nist.govhttps://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2023-1616.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook