Lucene search

[email protected]NVD:CVE-2023-27850

HistoryMar 10, 2023 - 6:15 p.m.

CVE-2023-27850

2023-03-1018:15:16

[email protected]

web.nvd.nist.gov

netgear

nighthawk router

file sharing

vulnerability

arbitrary files

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

26.1%

JSON

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that allows users with access to this feature to access arbitrary files on the device.

Affected configurations

Nvd

Node

netgearrax30_firmwareRange<1.0.10.94

AND

netgearrax30Match-

VendorProductVersionCPE
netgearrax30_firmware*cpe:2.3:o:netgear:rax30_firmware:*:*:*:*:*:*:*:*
netgearrax30-cpe:2.3:h:netgear:rax30:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
netgear	rax30_firmware	*	cpe:2.3:o:netgear:rax30_firmware::::::::
netgear	rax30	-	cpe:2.3:h:netgear:rax30:-:::::::*

References

tenable.com/security/research/tra-2023-9

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

26.1%

JSON

Related for NVD:CVE-2023-27850

prion1 cvelist1 cve1