Rewterz Threat Advisory – Multiple Trend Micro Apex One Vulnerabilities
June 12, 2023Rewterz Threat Update – Swiss Railway Company FSS Affected by Xplain Data Breach: Expanded Impact of the Cyberattack
June 12, 2023Rewterz Threat Advisory – Multiple Trend Micro Apex One Vulnerabilities
June 12, 2023Rewterz Threat Update – Swiss Railway Company FSS Affected by Xplain Data Breach: Expanded Impact of the Cyberattack
June 12, 2023Severity
High
Analysis Summary
CVE-2023-34285
NETGEAR RAX30 could allow a remote attacker to execute arbitrary code on the system, caused by a stack-based buffer overflow in cmsCli_authenticate. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code in the context of root.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2023-34285
Affected Vendors
NETGEAR
Affected Products
- NETGEAR RAX30 1.0.11.96
Remediation
Refer to NETGEAR Security Advisory for patch, upgrade or suggested workaround information.