Lucene search

K
cve[email protected]CVE-2023-38924
HistoryAug 07, 2023 - 7:15 p.m.

CVE-2023-38924

2023-08-0719:15:10
CWE-120
web.nvd.nist.gov
16
cve-2023
netgear
dgn3500
buffer overflow
http_password
setup.cgi

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

13.3%

Netgear DGN3500 1.1.00.37 was discovered to contain a buffer overflow via the http_password parameter at setup.cgi.

Affected configurations

NVD
Node
netgeardgn3500_firmwareMatch1.1.00.37
AND
netgeardgn3500Match-

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

13.3%

Related for CVE-2023-38924