Rewterz Threat Update – MongoDB’s Corporate Systems Suffer from Security Breach Resulting in Leaked Customer Data
December 18, 2023Rewterz Threat Advisory – CVE-2023-46750 – Apache Shiro Vulnerability
December 19, 2023Rewterz Threat Update – MongoDB’s Corporate Systems Suffer from Security Breach Resulting in Leaked Customer Data
December 18, 2023Rewterz Threat Advisory – CVE-2023-46750 – Apache Shiro Vulnerability
December 19, 2023Severity
High
Analysis Summary
CVE-2023-50089
Netgear WNR2000v4 could allow a remote attacker to execute arbitrary commands on the system, caused by command injection vulnerability. By sending a specially crafted request in HTTP for SOAP authentication, an attacker could exploit this vulnerability to execute arbitrary commands on the system.
Impact
- Gain Access
Indicators Of Compromise
CVE
- CVE-2023-50089
Affected Vendors
NETGEAR
Affected Products
- NETGEAR WNR2000v4 1.0.0.70
Remediation
Refer to Netgear Website for patch, upgrade, or workaround information.