The vulnerability of NETGEAR RAX30 router microprogramming software lies in the improper handling of symbolic links before accessing the file, allowing attackers to disclose confidential information.

🗓️ 26 Jun 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

NETGEAR RAX30 router has improper symbolic link handling before file access, causing disclosure.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2023-34283	3 May 202402:15	–	attackerkb
CNNVD	NETGEAR RAX30 安全漏洞	3 May 202400:00	–	cnnvd
CNVD	NETGEAR RAX30 Information Disclosure Vulnerability	15 Jul 202400:00	–	cnvd
CVE	CVE-2023-34283	3 May 202401:57	–	cve
Cvelist	CVE-2023-34283 NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability	3 May 202401:57	–	cvelist
EUVD	EUVD-2023-38364	3 Oct 202520:07	–	euvd
NVD	CVE-2023-34283	3 May 202402:15	–	nvd
Positive Technologies	PT-2023-3278 · NetGear · Netgear Rax30	4 Jan 202300:00	–	ptsecurity
Vulnrichment	CVE-2023-34283 NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability	3 May 202401:57	–	vulnrichment
Zero Day Initiative	NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability	8 Jun 202300:00	–	zdi

Vulners

Node

netgear rax30Range<1.0.10.94

Source	Link
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-CAN-19498/
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2023031011
vuldb	www.vuldb.com/ru/
web	www.web.nvd.nist.gov/view/vuln/detail
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-837/

08 Aug 2025 00:00Current

5.4Medium risk

Vulners AI Score5.4

CVSS 34.6

CVSS 24.9

EPSS0.00645

Netgear Rax30 symbolic links file access information disclosure router vulnerability