3 matches found
CVE-2023-48725
A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule functionality of Netgear RAX30 1.0.11.96 and 1.0.7.78. A specially crafted HTTP request can lead to code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...
CVE-2023-48725
Netgear RAX30 devices running 1.0.11.96 or 1.0.7.78 are affected by CVE-2023-48725. A stack-based buffer overflow in the JSON parsing getblockschedule() function can be triggered via an authenticated HTTP request. The TALOS report shows an unbounded strcpy to a stack buffer when the payload lacks...
Netgear RAX30 JSON Parsing getblockschedule() stack-based buffer overflow vulnerability
Talos Vulnerability Report TALOS-2023-1887 Netgear RAX30 JSON Parsing getblockschedule stack-based buffer overflow vulnerability March 7, 2024 CVE Number CVE-2023-48725 SUMMARY A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule functionality of Netgear RAX30...