Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
May 2, 2023Rewterz Threat Alert – AsyncRAT – Active IOCs
May 2, 2023Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
May 2, 2023Rewterz Threat Alert – AsyncRAT – Active IOCs
May 2, 2023Severity
High
Analysis Summary
CVE-2023-27356 CVSS:6.8
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
CVE-2023-27358 CVSS:8.8
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability.
CVE-2023-27370 CVSS:5.7
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
CVE-2023-27369 CVSS:8.8
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30. Authentication is not required to exploit this vulnerability.
CVE-2023-27368 CVSS:8.8
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability.
CVE-2023-27367 CVSS:8.0
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
CVE-2023-27357 CVSS:6.5
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability.
CVE-2023-27360 CVSS:7.5
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30. Authentication is not required to exploit this vulnerability.
Impact
- Code Execution
- Information Disclosure
- Remote Code Execution
- Buffer Overflow
Indicators Of Compromise
CVE
- CVE-2023-27356
- CVE-2023-27358
- CVE-2023-27370
- CVE-2023-27369
- CVE-2023-27368
- CVE-2023-27367
- CVE-2023-27357
- CVE-2023-27360
- CVE-2023-27361
Affected Vendors
NETGEAR
Affected Products
- NETGEAR RAX30
Remediation
Refer to NETGEAR Security Advisory for patch, upgrade or suggested workaround information.