NETGEAR ProSAFE Network Management System Directory Traversal Vulnerability

NETGEAR ProSAFE Network Management System is a network management system from NETGEAR that is used to centrally manage, monitor, and configure network devices. A directory traversal vulnerability exists in the NETGEAR ProSAFE Network Management System, which stems from a directory traversal remot...

CVE-2023-44449

NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation Vulnerability. This vulnerability allows remote attackers to escalate privileges on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...

CVE-2023-44449

NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation Vulnerability. This vulnerability allows remote attackers to escalate privileges on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this...

The vulnerability of the saveNodeLabel method in the ProSAFE Network Management System (NMS300) allows a perpetrator to enhance their privileges and perform cross-site scripting attacks.

The vulnerability of the saveNodeLabel method in the ProSAFE Network Management System NMS300 involves a lack of measures taken to protect the website structure. Exploiting this vulnerability can allow attackers to enhance their privileges and perform cross-site scripting attacks...

NETGEAR Access Control Error Vulnerability (CNVD-2023-9749744)

NETGEAR is a router from the American company NETGEAR. A hardware device that connects two or more networks and acts as a gateway between networks. An access control error vulnerability exists in the NETGEAR ProSAFE Network Management System v1.7.0.26 and earlier versions, which can be exploited ...

The vulnerability in the implementation of the Java Debug Wire Protocol (JDWP) of the ProSAFE Network Management System (NMS300) allows a perpetrator to execute arbitrary code.

The vulnerability of the Java Debug Wire Protocol implementation in the ProSAFE Network Management System NMS300 lies in the lack of authentication for a critical function. Exploiting this vulnerability allows an attacker to execute arbitrary code by connecting to port 11611...

PT-2023-7244 · NetGear · Netgear Prosafe Network Management System

Name of the Vulnerable Software and Affected Versions: NETGEAR ProSAFE Network Management System affected versions not specified Description: The issue is related to the implementation of the Java Debug Wire Protocol JDWP in the ProSAFE Network Management System, which lacks authentication for a...

The vulnerability of the getNodesByTopologyMapSearch() function in the network management, diagnosis, and optimization system for network devices, ProSAFE Network Management System (NMS300), allows a hacker to execute arbitrary code.

The vulnerability of the getNodesByTopologyMapSearch function in the system for managing, diagnosing, and optimizing the operation of network devices, the ProSAFE Network Management System NMS300, is related to the lack of protection for the SQL query structure. Exploiting this vulnerability allo...

The vulnerability of the MFileUploadController class in the system for managing, diagnosing, and optimizing the operation of network devices. ProSafe Network Management NMS300 allows a hacker to execute arbitrary code.

The vulnerability of the MFileUploadController class in the ProSafe Network Management NMS300 system, which is used for managing, diagnosing, and optimizing the operation of network devices, stems from the lack of restrictions on file uploads. Exploiting this vulnerability could allow a malicious...

The vulnerability of the BkreProcessThread class in the system for managing, diagnosing, and optimizing the operation of network devices. ProSafe Network Management NMS300 allows a hacker to execute arbitrary code.

The vulnerability of the BkreProcessThread class in the system for managing, diagnosing, and optimizing network device operations is related to the absence of authentication procedures. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the MyHandlerInterceptor class in the ProSafe Network Management NMS300 system’s management, diagnosis, and optimization of network device operations allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the MyHandlerInterceptor class in the ProSafe Network Management NMS300 system, which is used for management, diagnosis, and optimization of network device operations, is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a...

NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within th...

CVE-2021-27275

CVE-2021-27275 affects NETGEAR ProSAFE Network Management System 1.6.0.26. The flaw resides in ConfigFileController realName handling, where user-supplied paths are not properly validated before file operations, enabling directory traversal. Consequences include disclosure of sensitive informatio...

CVE-2021-27272

This vulnerability allows remote attackers to delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists...